firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 14:12:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pUuqnWeenUdOZ_7TmDnkjcIQaswNoQ5kWaGhwKfLs_Dv_amQKXzYXQ==
Age: 3361
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11441
Expires: Wed, 21 Sep 2022 18:18:44 GMT
Date: Wed, 21 Sep 2022 15:08:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wXRV1MK1jo9oHghPrBPfCQHrkiMrTh2dqLkvT33buh31nmDxKDvbLw==
age: 37970
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:08:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 15:50:33 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vev-__RvBjCXf00QS9StmkiMxhdBumi83PJdazNXypM78L2CkHyhBA==
Age: 281
hamid0808.blogspot.com/
301 Moved Permanently 179 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5d5ad06b0514ba2963ee86f3f7d16dfc
e6b633265c7af8f91236d4d5b14720b0400fe429
c79a4f4404724ecbdd0339e3778927bc53e7a648399e0c89bb84f876c00399e0
GET / HTTP/1.1
Host: hamid0808.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://hamid0808.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 21 Sep 2022 15:08:03 GMT
Expires: Wed, 21 Sep 2022 15:08:03 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 179
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 440047a55d718e4bb5f4e696aefdc4cd
d6ee8ddd58a67f4e3d3fae298fbc3958ca1b0f67
75695e1a1f190f95f5ac1514ca6848071ad135e9e6a53f1ae2d85d9b8183043c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6456
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:04 GMT
Last-Modified: Wed, 21 Sep 2022 13:20:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +FjSn9Yh1nJmNYuqnq3fXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K5dGurJJlQX4AFyR18+/4RB98WE=
hamid0808.blogspot.com/
200 OK 1.5 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (365)
Hash 03ce4c9e659deeec0ef6d2448c767f81
a4569ebf7d249c158363bdff7be97cae07955ddf
1382feb78a011f6f4a073db2a9f58adfc563a31c675befa0bb87e3d95fdf62f1
GET / HTTP/1.1
Host: hamid0808.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 21 Sep 2022 15:08:04 GMT
date: Wed, 21 Sep 2022 15:08:04 GMT
cache-control: private, max-age=0
last-modified: Tue, 20 Sep 2022 16:35:08 GMT
etag: W/"ba67b597866d87e4cd27ee045918f3d9daacb7585caca7e8279508cc2bc275a6"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1492
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 6833bdc6f3a1531c260df0eec1b6a07a
3f9431fb6284dcde388b72b034f3225a2b2ded87
2ebf5b4059d407bc62be0be11472c845589a26e438720c59a85c0b68f6f01990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 53162380c2c74bac1cbf5b3552364e2f
82f626bfddf20fc5cd2d066f09d62ce88ba5ce5a
210f3b2018fd4efc6e80d72f9bb166c1695741a6337bc08f940dd59d033ee546
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "210F3B2018FD4EFC6E80D72F9BB166C1695741A6337BC08F940DD59D033EE546"
Last-Modified: Wed, 21 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15868
Expires: Wed, 21 Sep 2022 19:32:33 GMT
Date: Wed, 21 Sep 2022 15:08:05 GMT
Connection: keep-alive
beambroth.com/qbeutmap?key=9496916a4336066df825344b94b6ca6b
200 OK 1.2 kB URL HTTP/1.1 beambroth.com/qbeutmap?key=9496916a4336066df825344b94b6ca6b
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cbbad32f271b879187789957932ca905
2d5cde67a23d40242130c0145957db7d5481579b
c4559465a78901231129589c4a6453e59385a0659deeb175f4d047e10434f3f8
Analyzer Verdict Alert quad9 Sinkholed
GET /qbeutmap?key=9496916a4336066df825344b94b6ca6b HTTP/1.1
Host: beambroth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hamid0808.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 21 Sep 2022 15:08:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17372399; expires=Thu, 22 Sep 2022 15:08:05 GMT
ain=eyJhbGciOiJIUzI1NiJ9.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.fxx3UbfN1S-1m9WoePAkUv4PHkPXtHk-eFtj4LLHlSo; expires=Wed, 21 Sep 2022 15:09:05 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74dca8f0ee29fbcb7f423ccb09026c78
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21183
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21183
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21183
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:08:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 60788
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e3MMA-NVstIsR7M9_JGH05i1e8pK17RsjyERrSMlC3uoHsWw_7ABtA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 19:18:32 GMT
age: 71373
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9556616ca10eb4383b1e15f360fbf6d4
cb328d0f66f4c2779bc64342ef89735636ae5ded
4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9227
x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiFzKG2zIAMFoDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pHepBEdMttNsKHcCRBHNSilQTcZLBjRGUkwzCvgzXLmiASW9UKo3Mw==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 05:24:55 GMT
age: 34990
etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:43:54 GMT
age: 8651
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:07:08 GMT
age: 61257
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 60780
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
beambroth.com/qbeutmap?shu=e33bacc39d0814e12679b84fcd33f7f9cda33bb7142dc4dd900b84e2b31871c4a6e0bed653ec870d834975c25fef237e2f40d12965cc9c15de012b2b75eb70d5b96efd9f709f917bc188f9b2ef7f85089c70b9fd&pst=1663772945&rmtc=t&uuid=&pii=&in=false&key=9496916a4336066df825344b94b6ca6b&refer=https%3A%2F%2Fhamid0808.blogspot.com%2F
302 Found 0 B URL HTTP/1.1 beambroth.com/qbeutmap?shu=e33bacc39d0814e12679b84fcd33f7f9cda33bb7142dc4dd900b84e2b31871c4a6e0bed653ec870d834975c25fef237e2f40d12965cc9c15de012b2b75eb70d5b96efd9f709f917bc188f9b2ef7f85089c70b9fd&pst=1663772945&rmtc=t&uuid=&pii=&in=false&key=9496916a4336066df825344b94b6ca6b&refer=https%3A%2F%2Fhamid0808.blogspot.com%2F
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /qbeutmap?shu=e33bacc39d0814e12679b84fcd33f7f9cda33bb7142dc4dd900b84e2b31871c4a6e0bed653ec870d834975c25fef237e2f40d12965cc9c15de012b2b75eb70d5b96efd9f709f917bc188f9b2ef7f85089c70b9fd&pst=1663772945&rmtc=t&uuid=&pii=&in=false&key=9496916a4336066df825344b94b6ca6b&refer=https%3A%2F%2Fhamid0808.blogspot.com%2F HTTP/1.1
Host: beambroth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://beambroth.com/qbeutmap?key=a969ca5c9ad2611762f11b79a526e2d2&submetric=17372399
Cookie: u_pl=17372399; ain=eyJhbGciOiJIUzI1NiJ9.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.fxx3UbfN1S-1m9WoePAkUv4PHkPXtHk-eFtj4LLHlSo; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Wed, 21 Sep 2022 15:08:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: http://click.plarimoplus.com/click?seat=453255&adid=453255&i=jG6CVnW9M2Y_0
Set-Cookie: pdhtkv=true; expires=Thu, 22 Sep 2022 15:08:05 GMT
uncs=1; expires=Thu, 22 Sep 2022 15:08:05 GMT
pdhtkv28=true; expires=Thu, 22 Sep 2022 15:08:05 GMT
uncs28=1; expires=Thu, 22 Sep 2022 15:08:05 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 646d8c40834603a9345133b7d7b8486e
Strict-Transport-Security: max-age=0; includeSubdomains
click.plarimoplus.com/click?seat=453255&adid=453255&i=jG6CVnW9M2Y_0
302 Found 0 B URL HTTP/1.1 click.plarimoplus.com/click?seat=453255&adid=453255&i=jG6CVnW9M2Y_0
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?seat=453255&adid=453255&i=jG6CVnW9M2Y_0 HTTP/1.1
Host: click.plarimoplus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
Pragma: no-cache
uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
302 Moved Temporarily 154 B URL HTTP/1.1 uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /sb/?r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D HTTP/1.1
Host: uuid-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: Apache
Content-Length: 154
Content-Type: text/html
Location: /sb/?cc=1&r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
Set-Cookie: b53eedc13__=f366aa3f26b3e6df64a79de29140d6763497fe5c4.1663772886; expires=Thu, 21 Sep 2023 15:08:06 GMT; domain=.akamaihd.net; path=/; HttpOnly; SameSite=None; Secure
ETag: "d2715d34e10e5a9f3692d96bd0fbb282:1592835897"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
P3P: CP="We do not have a P3P policy."
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Unused62: 8096267
Expires: Wed, 21 Sep 2022 15:08:06 GMT
Cache-Control: max-age=0, no-cache, no-store, private
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:08:06 GMT
Connection: keep-alive
uuid-a.akamaihd.net/sb/?cc=1&r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
302 Moved Temporarily 154 B URL HTTP/1.1 uuid-a.akamaihd.net/sb/?cc=1&r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /sb/?cc=1&r=https%3A%2F%2Fpeech2eecha.com%2Fclick%3Fc%3D31f4d94539bf11edaa990242ac110003%26i%3D775%26n%3D3%26subid%3D409777_17372399%26sid%3D HTTP/1.1
Host: uuid-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: b53eedc13__=f366aa3f26b3e6df64a79de29140d6763497fe5c4.1663772886
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: Apache
Content-Length: 154
Content-Type: text/html
Location: https://peech2eecha.com/click?c=31f4d94539bf11edaa990242ac110003&i=775&n=3&subid=409777_17372399&sid=f366aa3f26b3e6df64a79de29140d6763497fe5c4
Set-Cookie: b53eedc13__=f366aa3f26b3e6df64a79de29140d6763497fe5c4.1663772886; expires=Thu, 21 Sep 2023 15:08:06 GMT; domain=.akamaihd.net; path=/; HttpOnly; SameSite=None; Secure
ETag: "d2715d34e10e5a9f3692d96bd0fbb282:1592835897"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
P3P: CP="We do not have a P3P policy."
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Unused62: 8096267
Expires: Wed, 21 Sep 2022 15:08:06 GMT
Cache-Control: max-age=0, no-cache, no-store, private
Pragma: no-cache
Date: Wed, 21 Sep 2022 15:08:06 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3dacaa83685703d6ef1231058bd1d6e7
474154bded4a329176b032da402b45a7a7178045
92e65f6b241d94150154dc649664761ed51e3b7445aee1c71e74c16570ce5462
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:08:06 GMT
Last-Modified: Wed, 21 Sep 2022 15:01:56 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jwSmGQstuSDlzf1QFRYhnLtzw-KWxU2AT0fY1y6TvkHHJYfD-hJPog==
Age: 370
peech2eecha.com/click?c=31f4d94539bf11edaa990242ac110003&i=775&n=3&subid=409777_17372399&sid=f366aa3f26b3e6df64a79de29140d6763497fe5c4
302 Found 0 B URL HTTP/2 peech2eecha.com/click?c=31f4d94539bf11edaa990242ac110003&i=775&n=3&subid=409777_17372399&sid=f366aa3f26b3e6df64a79de29140d6763497fe5c4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?c=31f4d94539bf11edaa990242ac110003&i=775&n=3&subid=409777_17372399&sid=f366aa3f26b3e6df64a79de29140d6763497fe5c4 HTTP/1.1
Host: peech2eecha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:08:06 GMT
content-length: 0
location: https://no.shoppingpunch.com/external?merchant=7246223&click_id=31f4d94539bf11edaa990242ac110003&source_id=1068-1fe4n1v--https%3A%2F%2Famazon.com--PATH--0.0011322--FjellsportNO-PO-Amazon&cmp_code=413
set-cookie: tp_usr=61bafbc70d4211ed95a20242ac110003; Path=/; Domain=.peech2eecha.com; Expires=Fri, 21-Oct-2022 15:08:06 GMT; Max-Age=2592000; Secure; SameSite=None
expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 6e0a6d4f5ae4a2c17d9f93121e60947b
1d4fe93ffe550cd16004c7747cb3f97d4ccbe977
45eca5604c70f34ca844519e986a937d0815005321e0df67cd904103842dad19
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4912
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:08 GMT
Last-Modified: Wed, 21 Sep 2022 13:46:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
200 OK 28 kB URL HTTP/1.1 no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12978)
Hash 498c3434eb877cebe95ec222330c8362
ba4bdd40a22be8387ee4d6ed7ce66b6a0e84a0f6
2fe55fca6e37409cfc55c94e56a0fb389322c39f5fb17cc453b389cffd32c2a1
GET /ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 15:08:08 GMT
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004
clickId: 107698148_1663772888466_1574646
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.017459S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/html; charset=UTF-8
Content-Length: 27946
Set-Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; Max-Age=31536000; Expires=Thu, 21 Sep 2023 15:08:08 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6294-18360978d92-68c62; Max-Age=31536000; Expires=Thu, 21 Sep 2023 15:08:08 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=94
Connection: Keep-Alive
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646
200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
Connection: keep-alive
Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; kelkooID=a4c6294-18360978d92-68c62
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 15:08:08 GMT
Request-Time: PT0.00174S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: image/png
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=100
Connection: Keep-Alive
dd.kelkoogroup.net/tags.js
200 OK 42 kB URL HTTP/2 dd.kelkoogroup.net/tags.js
IP
File type ASCII text, with very long lines (65432)
Hash 7150acd408b7e8d6c917ecfcfbe47050
cb61fa84f12b95b9be19e8fb351231e393d72dfa
f2e8c6d5e71cff0727daf02501140f20ed2980b52a4b9f7db037efbd674a0854
GET /tags.js HTTP/1.1
Host: dd.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; kelkooID=a4c6294-18360978d92-68c62
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 42506
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Thu, 08 Sep 2022 07:49:28 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 1aa52a2a71a599aaf6b3df3a9c53b268.cloudfront.net (CloudFront), 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
date: Wed, 21 Sep 2022 14:50:02 GMT
cache-control: max-age=3600, public
expires: Wed, 21 Sep 2022 15:49:58 GMT
etag: "32ef7-5e825ab48f67d-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: vm8-C1QSeifiitc8BJy9GsvJxazHaF6aPQvE6X2n54jel9lw5vNI_Q==
age: 1090
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/favicon.ico
403 Forbidden 0 B URL HTTP/1.0 no-go.kelkoogroup.net/favicon.ico
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
Connection: keep-alive
Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; kelkooID=a4c6294-18360978d92-68c62; _ga=GA1.2.325058460.1663772888; _gid=GA1.2.332687042.1663772888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.0 403 Forbidden
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646
200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
Content-Type: text/plain;charset=utf-8
Content-Length: 488
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; kelkooID=a4c6294-18360978d92-68c62; _ga=GA1.2.325058460.1663772888; _gid=GA1.2.332687042.1663772888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 15:08:08 GMT
Request-Time: PT0.003482S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=79
Connection: Keep-Alive
no-go.kelkoogroup.net/redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&initiator=dd
303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&initiator=dd
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437ea5e0c10e724056a71100f707743242ffec3eba3df6a1d6518a4602bbf03c38d9b7ed151a3afed44c604edc851c450cbd191c836221a2104d18c737d243fd60a7521c161748d07c236784c7df857ca38f7c4c1546819284edd20ba8366207767b6e5e2114a7a8475ed4cc9ecc7d34a8528b8b89172367cc67f8d582c00e8468b6ad23f279b6ec084f9939a4ab16b2876445d2e146ab3265f1a5be1b382d59d0e384b81e9e0b4ff634f38f343b8220d7954c88d4ff18250c2&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&clickId=107698148_1663772888466_1574646&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&initiator=dd HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
Connection: keep-alive
Cookie: datadome=KK2y~UFxI9hwSLsRGcTTx5.qWKZgl1jzPsFyYYm-pB0sX_yIdqECI6UKQAkk7_xCOqdcC65tf6nOLH7a8Cv1v-aIvjbp9qV0d_ngFa6TafteuEeBpiqtuOCJ8nlNpsy; kelkooID=a4c6294-18360978d92-68c62; _ga=GA1.2.325058460.1663772888; _gid=GA1.2.332687042.1663772888
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
Date: Wed, 21 Sep 2022 15:08:08 GMT
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004
clickId: 107698148_1663772888466_1574646
country: no
Location: https://www.fjellsport.no/merker/alfa/alfa-horizon-a-p-s-gtx-black?kk=a4c6294-18360978d92-68c62&channable=03c6f96964003330312d3735373645&utm_campaign=&utm_content=&utm_source=kelkoono&utm_medium=cpc&utm_term=&variantId=301-7576
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.012934S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=83i2nQHLgyVvdtDwN6bSbb2xgtedrOnY2.o1eeuCl8wbs-9UDQticia0Ea9ybXYxpAmf9MdqnNMML3QDQwGtw9f.HE8Nx2mLDbq9D-MNQ5btwBh6aJ_TFAz4aiqzJUq; Max-Age=31536000; Expires=Thu, 21 Sep 2023 15:08:08 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=93
Connection: Keep-Alive
Content-Type: text/plain
ocsp.digicert.com/
200 OK 279 B IP
Hash 3ed57e00c8d0da8e7cbe47c3133acec7
0b1dab1c62ea5076d4bdbe0ace54b369a6d6f7ad
7402457a61a5a47cb59669485eee388c17674739e6db91e35f1ac86141de6ced
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2922
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:08 GMT
Last-Modified: Wed, 21 Sep 2022 14:19:26 GMT
Server: ECS (amb/6B77)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 3ed57e00c8d0da8e7cbe47c3133acec7
0b1dab1c62ea5076d4bdbe0ace54b369a6d6f7ad
7402457a61a5a47cb59669485eee388c17674739e6db91e35f1ac86141de6ced
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2923
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Last-Modified: Wed, 21 Sep 2022 14:19:26 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 2.3 kB IP
Hash 8ab2726fdc56579d2f5058ac931f8904
3abe86a031db62fbdb6333afdcd2ce273f02d5b9
988e507d094ca6bcaa4a8bfc8e12d9a3316bd1b4fdb61fcdbbb6ead790f2adfd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.livechatinc.com/tracking.js
200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Hash a443118060061ab6e271ebe122464239
155d13a2aa3bd75fea5c2298e4678cb76c07b084
b98138ab7050589277e5751d6a3818e726bbd106b9523f104e23bd3933bff04d
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 10:40:48 GMT
etag: W/"007b32487b3fb040f15d1ea195bd2acb"
x-amz-version-id: _xG88gXidICys4xDpATfRKLYWxJ0cOXw
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: HAM50-C2
x-amz-cf-id: XfFQEPhNJ8FEv87XGAfLjDCzthgq9RDoJGT0nCuA8EZGTXxwL48iww==
content-length: 25611
cache-control: max-age=28800
expires: Wed, 21 Sep 2022 23:08:09 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FsitesearchGo%3F.ts%3D1663772886870%26.sig%3DeN0X9lPJ0Rxh_aqx95FzZpIr23g-%26affiliationId%3D96980166%26comId%3D7246223%26country%3Dno%26offerId%3Da21337412b733f4d3ae3dd5831b3b0ce%26searchId%3D1076100371022_1663772886848_7755052%26service%3D36%26tokenId%3Ddbf5736e-e34f-4d32-8841-1632ac5a2a85%26custom1%3D413%26custom2%3D2247873&dp=%2F96980166%7C7246223%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Fjellsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=325058460.1663772888&tid=UA-168544891-6&_gid=332687042.1663772888&_r=1&cd1=96980166&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&cd3=7246223&cd4=a4c6294-18360978d92-68c62&cd5=&cd6=96980166%7C7246223%7C&z=991721712
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FsitesearchGo%3F.ts%3D1663772886870%26.sig%3DeN0X9lPJ0Rxh_aqx95FzZpIr23g-%26affiliationId%3D96980166%26comId%3D7246223%26country%3Dno%26offerId%3Da21337412b733f4d3ae3dd5831b3b0ce%26searchId%3D1076100371022_1663772886848_7755052%26service%3D36%26tokenId%3Ddbf5736e-e34f-4d32-8841-1632ac5a2a85%26custom1%3D413%26custom2%3D2247873&dp=%2F96980166%7C7246223%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Fjellsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=325058460.1663772888&tid=UA-168544891-6&_gid=332687042.1663772888&_r=1&cd1=96980166&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&cd3=7246223&cd4=a4c6294-18360978d92-68c62&cd5=&cd6=96980166%7C7246223%7C&z=991721712
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FsitesearchGo%3F.ts%3D1663772886870%26.sig%3DeN0X9lPJ0Rxh_aqx95FzZpIr23g-%26affiliationId%3D96980166%26comId%3D7246223%26country%3Dno%26offerId%3Da21337412b733f4d3ae3dd5831b3b0ce%26searchId%3D1076100371022_1663772886848_7755052%26service%3D36%26tokenId%3Ddbf5736e-e34f-4d32-8841-1632ac5a2a85%26custom1%3D413%26custom2%3D2247873&dp=%2F96980166%7C7246223%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Fjellsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=325058460.1663772888&tid=UA-168544891-6&_gid=332687042.1663772888&_r=1&cd1=96980166&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1663772888472_714004&cd3=7246223&cd4=a4c6294-18360978d92-68c62&cd5=&cd6=96980166%7C7246223%7C&z=991721712 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Wed, 21 Sep 2022 15:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TP3749N
200 OK 82 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TP3749N
IP
File type ASCII text, with very long lines (21254)
Hash e7056ad246491e84b988b19d4149ab4c
33df200905fc6c898c7bac80e0349ad71b7d101b
0d5bbc88f013e384d280893ec1a899f702f3bf9f4b074709bc975fba4ea33788
GET /gtm.js?id=GTM-TP3749N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 15:08:09 GMT
expires: Wed, 21 Sep 2022 15:08:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81930
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.fjellsport.no/merker/alfa/alfa-horizon-a-p-s-gtx-black?kk=a4c6294-18360978d92-68c62&channable=03c6f96964003330312d3735373645&utm_campaign=&utm_content=&utm_source=kelkoono&utm_medium=cpc&utm_term=&variantId=301-7576
200 OK 133 kB URL HTTP/2 www.fjellsport.no/merker/alfa/alfa-horizon-a-p-s-gtx-black?kk=a4c6294-18360978d92-68c62&channable=03c6f96964003330312d3735373645&utm_campaign=&utm_content=&utm_source=kelkoono&utm_medium=cpc&utm_term=&variantId=301-7576
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (25076)
Size 133 kB (132740 bytes)
Hash ecbef4ec2f0f5b79917740c0083b715c
8e8b100e2afab3bea0b92119002e6f2cd3e94fa1
08add6c858b4bcb5358e7405481768cf2cda376b8fb214c6d76acd19f7bdc4e6
GET /merker/alfa/alfa-horizon-a-p-s-gtx-black?kk=a4c6294-18360978d92-68c62&channable=03c6f96964003330312d3735373645&utm_campaign=&utm_content=&utm_source=kelkoono&utm_medium=cpc&utm_term=&variantId=301-7576 HTTP/1.1
Host: www.fjellsport.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:09 GMT
content-type: text/html; charset=utf-8
cf-ray: 74e3b6eb2bd8b515-OSL
cache-control: no-store
link: </static/runtime.cf090e85760578352103.87.nb-NO.js>; rel="modulepreload"; as="script"; crossorigin="anonymous", </static/main.e2615d9e584b05ce9517.87.nb-NO.js>; rel="modulepreload"; as="script"; crossorigin="anonymous", </static/vendors~main.5b7af246f2ce7d5dd4a2.87.nb-NO.js>; rel="modulepreload"; as="script"; crossorigin="anonymous", </static/globals.87ce85a24e10be7d960b.css>; rel="preload"; as="style", </static/static.7db484bcb82ae1dbf8db.css>; rel="preload"; as="style", </static/f785bde0ec212bfab70652799e038381.woff2>; rel="preload"; as="font"; crossorigin="anonymous"
cf-cache-status: DYNAMIC
request-context: appId=cid-v1:0c613cf3-3219-4402-8e44-accd6521a7dc
set-cookie: session_id=a71c8ca6-cc4f-410a-b180-22b28a62f66c; path=/; secure; samesite=lax; httponly
jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJodHRwOi8vc2NoZW1hcy54bWxzb2FwLm9yZy93cy8yMDA1LzA1L2lkZW50aXR5L2NsYWltcy9hbm9ueW1vdXMiOiIwOTkxNTk5My1kN2E4LTQ3ZmMtYjM2NC1jMTk2YmM0YjMwZGUiLCJuYmYiOjE2NjM3NzI4ODgsImV4cCI6MTY5NTMwODg4OCwiaWF0IjoxNjYzNzcyODg4LCJpc3MiOiJleGNpdGUiLCJhdWQiOiJleGNpdGUifQ.aFmHZoo2ExZABa_ModaoApTzoSrwP0He0j1vV_IOLGs; expires=Thu, 21 Sep 2023 15:08:09 GMT; path=/; secure; samesite=lax; httponly
x-worker-time: 265ms
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9240310&version=1261.8.8.1635.90.179.68.8.10.17.7.152&group_id=1&jsonp=__lc_static_config
200 OK 1.4 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9240310&version=1261.8.8.1635.90.179.68.8.10.17.7.152&group_id=1&jsonp=__lc_static_config
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (3886), with no line terminators
Hash 9fe01ccb287ea9d53967d9834587824d
a164dd649677abea81bfe38c313c2744c837e0e5
702e3b12237d236fdf2a321f4329f97825f786ec41174959ebeb169afa1a0f5d
GET /v3.3/customer/action/get_configuration?license_id=9240310&version=1261.8.8.1635.90.179.68.8.10.17.7.152&group_id=1&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1424
cache-control: public, max-age=334
expires: Wed, 21 Sep 2022 15:13:43 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9240310&version=a2fb162d3655d456397b7117a50bebbc_75ad11d2d1c3176be554a3e49bc118fc&language=nb&group_id=1&jsonp=__lc_localization
200 OK 4.2 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9240310&version=a2fb162d3655d456397b7117a50bebbc_75ad11d2d1c3176be554a3e49bc118fc&language=nb&group_id=1&jsonp=__lc_localization
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (11444), with no line terminators
Hash 3ca6400e76ee4999d2594de6e9898fce
8a1f0ffebf8e4696494e4af4f99fb1753340c7e4
c7d5a4e0acdf63627b19caf856e08f3423566d07b79ec04c6d2c43ce7bc99e07
GET /v3.3/customer/action/get_localization?license_id=9240310&version=a2fb162d3655d456397b7117a50bebbc_75ad11d2d1c3176be554a3e49bc118fc&language=nb&group_id=1&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=334
expires: Wed, 21 Sep 2022 15:13:43 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
content-length: 4194
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=9240310&group=1&embedded=1&widget_version=3&unique_groups=0
200 OK 2.0 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=9240310&group=1&embedded=1&widget_version=3&unique_groups=0
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4424), with no line terminators
Hash 6975fc9733be12516047d02256294684
d7d3d381d40b2fc3004bb3d1efbd9b54824466b4
4b673d4636d0081533e90b9bf9a9217d1405207d271aaeced82f90e59a3845d8
GET /customer/action/open_chat?license_id=9240310&group=1&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-length: 1968
date: Wed, 21 Sep 2022 15:08:09 GMT
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/0.96a16c18.chunk.js
200 OK 70 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/0.96a16c18.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Hash 4e94f8d92e0b5b5d837c91a71518ae93
3a901f88735fe470d89fabae6f6da1bd6ef57370
ad40d01aa34c47aa7e9bc7bf52adc65074e90e7ea81a3646ee536b79a278be8c
GET /widget/static/js/0.96a16c18.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 12:23:44 GMT
etag: W/"6a835528d087d08b1f0fe0642cb6d223"
x-amz-version-id: D3auGCHl.1EBD8fIsGg0TVEJ4vGgzVLu
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 2Z3Jj0ChNSBBVMOnJi6CzXCHxdv4j89b_Ig-RZcY8UGtT5nFkSAmPg==
content-length: 69542
cache-control: max-age=31536000
expires: Thu, 21 Sep 2023 15:08:09 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/2.ae17a60b.chunk.js
200 OK 94 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/2.ae17a60b.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Hash abe670f887a53cd14952f83930b4e64c
0782b5828efbdc2aab89de12ce7b15d9d5ef9618
03325c5d00828b3c704161dc3264869027f126cd4ce8ed94bc8809b310174a36
GET /widget/static/js/2.ae17a60b.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 10:40:49 GMT
x-amz-version-id: bpU.37FnIOPFeqPnyYN2_ycnjcD2Lb3N
server: AmazonS3
content-encoding: br
etag: W/"e6fe58bbd66bcb579db091bb3857594b"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: fUoYfoKRf_-mHPxNenC1mgk_IOQLtReBv2PlWcsF8yQyKpu_289HCA==
content-length: 94203
cache-control: max-age=31536000
expires: Thu, 21 Sep 2023 15:08:09 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.222338d2.chunk.js
200 OK 134 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.222338d2.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 134 kB (134381 bytes)
Hash 15833ab236abbee9fc54fb7f73166b9f
27e1adc3a3c0f25d0cb79b561ec9fb658f922013
29286ec76a48a9c2164e7070bcc58a21a6a3c0f6477df1d0d7169d43c1311a25
GET /widget/static/js/iframe.222338d2.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 10:40:50 GMT
etag: W/"8aed37a370cde495e3ad2a56bc68002c"
x-amz-version-id: Zm7dFJHNhyR_7Soj8ZD0e520uRRz8f2v
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: -FUywuWfFex7fyWEhiDJqoacQOISn6YJ0cZNVdEQx3of7oPZmjdbAA==
content-length: 134381
cache-control: max-age=31536000
expires: Thu, 21 Sep 2023 15:08:09 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-75470.js?sv=7
200 OK 5.2 kB URL HTTP/2 static.hotjar.com/c/hotjar-75470.js?sv=7
IP
File type Unicode text, UTF-8 text, with very long lines (14567)
Hash edc581f3e327e6d5350b522fb6395fad
47cf6ce8d0635031a7a3bcfda5f6bb5368468bee
1bc253eafebd5518203acf2cf1d5a810b596750090bf7e77960730a25f8b6891
GET /c/hotjar-75470.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Sep 2022 15:07:33 GMT
cache-control: max-age=60
etag: W/44c5b2c28778fbfa99bba82f67827666
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jOQIMcZDvIQu-qGm3iAMnzFgDflSOQNbNDq2FTBT4h-z7F7uiaWA8w==
age: 36
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265
GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:03:13 GMT
expires: Tue, 19 Sep 2023 21:03:13 GMT
cache-control: public, max-age=31536000
age: 151497
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash 0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:03:15 GMT
expires: Tue, 19 Sep 2023 21:03:15 GMT
cache-control: public, max-age=31536000
age: 151495
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.f4179535429bf14e77ee.js
200 OK 65 kB URL HTTP/2 script.hotjar.com/modules.f4179535429bf14e77ee.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 4a99ec558aff503901b33da3d9b4ec1b
83d1a24dacc650c18594a5334ae15a144b5704ec
ad082098bddf0eed29c4d958450687924b052f783a834f58e59495e0c8f3143b
GET /modules.f4179535429bf14e77ee.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65420
date: Tue, 20 Sep 2022 16:01:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4a99ec558aff503901b33da3d9b4ec1b"
last-modified: Tue, 20 Sep 2022 16:00:26 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OE4eZsMWSHkg4BMo9-cYVg1o1mu43nRxI7_VRkQWCsnk5ECbd0F3aA==
age: 83223
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/rtm/ws?license_id=9240310
101 Switching Protocols 0 B URL HTTP/1.1 api.livechatinc.com/v3.3/customer/rtm/ws?license_id=9240310
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.3/customer/rtm/ws?license_id=9240310 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NYdKgReIzv8AzxF8GIPaYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: csaghzkevKTgtUdvvVD1F8aX4Tk=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
legacy: 2023-06-30
Date: Wed, 21 Sep 2022 15:08:10 GMT
Upgrade: websocket
Connection: Upgrade
accounts.livechatinc.com/customer/token
200 OK 138 B URL HTTP/2 accounts.livechatinc.com/customer/token
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash d3963451410847dca28a3ef85aa0e57e
3df8742bde65d8d958d9f84521086ada3199d5f4
9a1a5eadb5201970279fcab670c457c761a3f42ef088e01caca7b6cfe819f55a
POST /customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Wed, 21 Sep 2022 15:08:10 GMT
set-cookie: __lc_cid=6ca29603-4b5a-4db2-6c71-2b6fb0a81118; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 21 Sep 2024 15:08:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=028e4aef4b974fd7640e6f9b33de6b1e75122dd5b148dc7f2fd6022ce75188321a41727300ea4e45efffd6efb8895b7f0269a4189c747aedaed636f29357; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 21 Sep 2024 15:08:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=6ca29603-4b5a-4db2-6c71-2b6fb0a81118; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 21 Sep 2024 15:08:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=028e4aef4b974fd7640e6f9b33de6b1e75122dd5b148dc7f2fd6022ce75188321a41727300ea4e45efffd6efb8895b7f0269a4189c747aedaed636f29357; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 21 Sep 2024 15:08:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1663772920&tag=2d7a3421b7087de9971b146854be7fe6189a3d8c; Path=/; Expires=Wed, 21 Sep 2022 15:08:40 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
js.testfreaks.com/onpage/fjellsport.no/head.js
200 OK 29 kB URL HTTP/2 js.testfreaks.com/onpage/fjellsport.no/head.js
IP
File type ASCII text, with very long lines (32765)
Hash ee846fd5f2e745f4d6cc53cde165a844
7fda582852392933611621c7f731a97496c12efb
9b602ff076089a19d8d96760ba1447c7399a3e1000cdf173dbe5ee6a2049f005
GET /onpage/fjellsport.no/head.js HTTP/1.1
Host: js.testfreaks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 29238
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cache-control: max-age=1800, public
x-ua-compatible: IE=Edge,chrome=1
x-request-id: 1733be932589ce8187e055eaf1b2633d
x-runtime: 0.010175
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:49:02 GMT
x-varnish: 1754584424
via: 1.1 varnish, 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u0MGdSjmgiHlQ1_xJ55_ISQM24ejDGTamRfHbCH-4ZXm3z0AdD_VMA==
age: 1148
X-Firefox-Spdy: h2
widget.porterbuddy.com/porterbuddy-widget.css
200 OK 8.8 kB URL HTTP/2 widget.porterbuddy.com/porterbuddy-widget.css
IP
Hash cf61c91ae743b98b4e275c74f9877b45
72df024dcb3ca696d9bd8dc77a86f0bcb5aca62b
becee04a45e58acd5fb364587f0b2c56b0095c3492cdc28afe8e55133d1df9b3
GET /porterbuddy-widget.css HTTP/1.1
Host: widget.porterbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 01 Aug 2022 07:45:32 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 01:24:59 GMT
cache-control: public, max-age=300, s-maxage=86400
etag: W/"44e07c559e0e666e3da9d739fcc682cc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qqbaj8bxkdP-O8py1iOaGXYfm9FP5_ZhcOgOkLPNdMHZUEoWeVLEEQ==
age: 49392
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 14:41:12 GMT
expires: Wed, 21 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 1618
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 0140b4f83d7db71c84ced02d4ed0eae7
9817bf004522b8ce9062059aa4eea5f1cbedc2f2
a847317f5049c31afcf7b9b07790be4c99a869c5b7b0129fb5bc4d52ec75f569
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3285
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Last-Modified: Wed, 21 Sep 2022 14:13:25 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.kk-resources.com/leadtag.js
200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js
IP
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: 0d75a8dd-2208-4f24-b5a8-dd2208af244b
X-Gravitee-Request-Id: 0d75a8dd-2208-4f24-b5a8-dd2208af244b
Request-Time: 3
Accept-Ranges: bytes
Last-Modified: Tue, 12 Jul 2022 13:51:05 GMT
Content-Encoding: gzip
Date: Wed, 21 Sep 2022 14:32:12 GMT
Cache-Control: public, max-age=3600
ETag: "05e089e0c08fd98ee6b4f6497ec87752b123fc2f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fA0TRcDr_9Fq-c8fhn79I2taa6jT7I8dyTQ7rcmXV_T3d-2fdJIjIQ==
Age: 2158
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: c5gRugRzz5auog3JrxetMv3xiQ3SvQFPw+1HO+jSu/AMK6MK1dD9ccoKWEWUAUQ+yKkMNBez/y5O3ICP1tvwxg==
content-length: 26839
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 15:08:10 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 21 Sep 2022 15:08:10 GMT
expires: Wed, 21 Sep 2022 15:08:10 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e1b099985efaf8c67552ba2a67ae2a21
b464042a8dd957fd751bc03701e5907b85a02099
e715e3919eba0991fffa4e7123e5561c7190ec5cd6d10d64430be810650486a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e1b099985efaf8c67552ba2a67ae2a21
b464042a8dd957fd751bc03701e5907b85a02099
e715e3919eba0991fffa4e7123e5561c7190ec5cd6d10d64430be810650486a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 14d31c538ef2caf4422a82eae13752fb
64a60fba95891f5dcc3d098c78ca3705d679c073
9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6446
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Last-Modified: Wed, 21 Sep 2022 13:20:44 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
widget.porterbuddy.com/widgetframe.html
200 OK 101 B URL HTTP/2 widget.porterbuddy.com/widgetframe.html
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 2946dfbe162d793818e2bd45f5338537
ac2a60035df5d7202f985956443ed580a0f53ecb
3e788329e1f4d21f3bf962b605d86cd5d6ca4703f44b2d695bb81953e7ad94d6
GET /widgetframe.html HTTP/1.1
Host: widget.porterbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 101
last-modified: Mon, 01 Aug 2022 07:45:33 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 01:38:51 GMT
cache-control: public, max-age=300, s-maxage=86400
etag: "2946dfbe162d793818e2bd45f5338537"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7gI-qlFpKn-hX6r4P34YQOPUBm986tUxASBuQOXMVQW6m2SW8CzZPw==
age: 48560
X-Firefox-Spdy: h2
11203568.fls.doubleclick.net/activityi;src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576?
200 OK 555 B URL HTTP/2 11203568.fls.doubleclick.net/activityi;src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (770), with no line terminators
Hash b18668011fa180de50f391f0b3832e7f
6e6d32a9ec26228b3ab47a5dc6a70e95033f5937
0fac6247cce2fa459d4544546081a0b83e97d85b408620fc570aa3f6be34cc10
GET /activityi;src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576? HTTP/1.1
Host: 11203568.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:10 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 555
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 15:23:10 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
11203568.fls.doubleclick.net/activityi;src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576?
200 OK 509 B URL HTTP/2 11203568.fls.doubleclick.net/activityi;src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (736), with no line terminators
Hash 6a1ba5be4eaa87e481fea4c1cfcd7505
317b960cfe50e9af52f8732ca5e436991ce5d158
0f3ab1f778fc9fdc530f92a2c2a16390ca85929c784329c7552a8c0f7e31e43d
GET /activityi;src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576? HTTP/1.1
Host: 11203568.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:10 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 509
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 15:23:10 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.testfreaks.com/onpage/fjellsport.no/reviews.json?key=301-7514&url_key=Horizon%20A%2FP%2FS%20GTX&callback=testFreaks.cb
200 OK 630 B URL HTTP/2 js.testfreaks.com/onpage/fjellsport.no/reviews.json?key=301-7514&url_key=Horizon%20A%2FP%2FS%20GTX&callback=testFreaks.cb
IP
File type ASCII text, with very long lines (630), with no line terminators
Hash c6662072edc01cda36cf682467eb44ff
46bc1c04f9318fd82e79ca6a56fd4e51cc11992f
ce814f119e8d3ed9c47a0820b20064bc01e6a66e3358b1c559ac858f0a1b646d
GET /onpage/fjellsport.no/reviews.json?key=301-7514&url_key=Horizon%20A%2FP%2FS%20GTX&callback=testFreaks.cb HTTP/1.1
Host: js.testfreaks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 630
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cache-control: max-age=3600, public
x-ua-compatible: IE=Edge,chrome=1
etag: "c6662072edc01cda36cf682467eb44ff"
x-request-id: f2dd89e7bcf2ff6e56d46c251043fe4b
x-runtime: 0.028936
accept-ranges: bytes
date: Wed, 21 Sep 2022 15:08:10 GMT
x-varnish: 1754798579
via: 1.1 varnish, 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gUNgd0ac7MvlV_stWxx1CZ2_lcjs68ztgE7k_tAjYSgMI-GqWfi4mQ==
age: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6e871380318c8a883f329ca25b2ee36c
e8d3585a45b2b32814096416b12028644c3aff50
0496e550737efc29d25e0bed099c472680f2367aa3d4cde4209bfa9af41fd9d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
200 OK 471 B IP
Hash 6e0a6d4f5ae4a2c17d9f93121e60947b
1d4fe93ffe550cd16004c7747cb3f97d4ccbe977
45eca5604c70f34ca844519e986a937d0815005321e0df67cd904103842dad19
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1710
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Last-Modified: Wed, 21 Sep 2022 14:39:41 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
200 OK 471 B IP
Hash 6e0a6d4f5ae4a2c17d9f93121e60947b
1d4fe93ffe550cd16004c7747cb3f97d4ccbe977
45eca5604c70f34ca844519e986a937d0815005321e0df67cd904103842dad19
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:10 GMT
Last-Modified: Wed, 21 Sep 2022 13:46:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
s.kelkoogroup.net/k.gif
200 OK 0 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: etag
Referer: https://www.fjellsport.no/
Origin: https://www.fjellsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: 3a5d0cc2-551b-49b7-9d0c-c2551be9b713
X-Gravitee-Request-Id: 3a5d0cc2-551b-49b7-9d0c-c2551be9b713
Vary: Origin
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://www.fjellsport.no
Access-Control-Allow-Headers: etag
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Wed, 21 Sep 2022 15:08:10 GMT
content-length: 0
s.kelkoogroup.net/k.gif
200 OK 69 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash b67f1e44f314942c589b69a2f0b3a1bb
e6276e3622a590e13ca681e35b846b842a788b91
84aaf491513c66f2c740639fae92ba7c9dedf2cd747f99af698812c9328d7731
GET /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODM2MDk3OGQ5Mi02OGM2Mg==
Origin: https://www.fjellsport.no
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: c2b5855f-6339-47c7-b585-5f6339f7c748
X-Gravitee-Request-Id: c2b5855f-6339-47c7-b585-5f6339f7c748
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODM2MDk3OGQ5Mi02OGM2Mg==
Vary: *,Origin
Pragma: no-cache
Expires: 0
Request-Time: 0
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate
Last-Modified: Fri, 01 Jan 2010 00:00:00 GMT
Access-Control-Allow-Origin: https://www.fjellsport.no
Access-Control-Expose-Headers: ETag
Access-Control-Allow-Credentials: true
Date: Wed, 21 Sep 2022 15:08:10 GMT
Content-Type: image/gif
content-length: 43
bat.bing.com/bat.js
200 OK 11 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=0B08F0AAC9816CB60480E28CC8746D69; domain=.bing.com; expires=Mon, 16-Oct-2023 15:08:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D92ECE64E98744DFB54877DE1C5B0DA6 Ref B: OSL30EDGE0122 Ref C: 2022-09-21T15:08:10Z
date: Wed, 21 Sep 2022 15:08:10 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 7.5 kB IP
Hash 889d0ad442cc36abb3017b941d50691a
7e76d6ff6a51b566cde2946aa4de7e7eb8759b0d
45c2a43ce94614700d4c19ec373109233a584055dcf67ee07a51fda1e014608d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 64 kB IP
Hash 213d4cd0da857b9e06e59caa957530dc
79fc9b352574338f1412e37a2ce9feb4dd91243f
468752ce5285356eaca3ed1f0748e3d1e6ddabc4e98487e7b299b74f4e6d0090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/785054750/?random=1663772890852&cv=9&fst=1663772890852&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/785054750/?random=1663772890852&cv=9&fst=1663772890852&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2892), with no line terminators
Hash 09578bcb1887edf9015415224ac77d89
55c4c2e87f30cab0296b9675bb15818079408f79
dcf82fd558c2497e452d6d1e2d3b15cfbd32ff8285e269b6a3865bd014273939
GET /pagead/viewthroughconversion/785054750/?random=1663772890852&cv=9&fst=1663772890852&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1225
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 15:23:11 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1006168981/?random=1663772890849&cv=9&fst=1663772890849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1006168981/?random=1663772890849&cv=9&fst=1663772890849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2894), with no line terminators
Hash 7de815fdd3f853989c3ce197a493775b
9ee42b417a28bc404a097981f13af977cd6b6e14
9f6766c9413b699aafb8603d650593384ad7d27080e9cd60bd1302f598173d53
GET /pagead/viewthroughconversion/1006168981/?random=1663772890849&cv=9&fst=1663772890849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&ig=0&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&auid=401301485.1663772889&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1222
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 15:23:11 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 50d65eb8547eb23a7a154124e9da6c97
c1821ef328e477754c0615e0dbf77b1e0f68f61c
84e99052d890cd104c95c639784db8782f840925c027c29cdf49af58e811313f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Last-Modified: Wed, 21 Sep 2022 13:25:20 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dapi.videoly.co/1/videos/0/387/?categoryTree=&brandName=Alfa&SKU=301-7514&productId=Alfa-mdl348110&productTitle=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&productVariation=301-7514&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=96.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&callback=_vdlyb76036037c
200 OK 556 B URL HTTP/2 dapi.videoly.co/1/videos/0/387/?categoryTree=&brandName=Alfa&SKU=301-7514&productId=Alfa-mdl348110&productTitle=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&productVariation=301-7514&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=96.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&callback=_vdlyb76036037c
IP
File type ASCII text, with very long lines (868), with no line terminators
Hash 73a9a753e8790ad96c15c7052dc0bc60
decfbe50d072745c6adf048a2eae3e22a6e00ee7
20603f54772e416561dd2f2d351c458827fec8c0c2cd343d0d48fb9415f82edb
GET /1/videos/0/387/?categoryTree=&brandName=Alfa&SKU=301-7514&productId=Alfa-mdl348110&productTitle=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&productVariation=301-7514&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=96.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&callback=_vdlyb76036037c HTTP/1.1
Host: dapi.videoly.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:11 GMT
content-type: text/javascript; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
x-content-type-options: nosniff
etag: W/"364-hE4d+sfG5+9cIGb/EZ3uXWM2WjA"
set-cookie: vdly=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw; Path=/; Expires=Fri, 23 Dec 2022 15:08:11 GMT; HttpOnly; Secure; SameSite=None
via: 1.1 vegur
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4xhqpC0Z%2F51%2F1%2FYrMox7iA64XOGR32e11zMdWmPqotX8sxoRLgeKzDegbWiTdHCK7L46jQ0enLkVSFkRQQubJRlZwB9cM%2FEKkMFCA%2FQBJTbx0pugYjbWlCiBIwWEHKrZDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3b6f8bed1b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget.porterbuddy.com/porterbuddy-storage.js
200 OK 1.5 kB URL HTTP/2 widget.porterbuddy.com/porterbuddy-storage.js
IP
Hash 7b305a6c08020e91d39496614252b918
35329b4286b2d9e9f261a3074141a148c3b687a1
0e0449c4bc2eca349bbf75c56eb679297b42633104b031b3202bccdf491394e5
GET /porterbuddy-storage.js HTTP/1.1
Host: widget.porterbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.porterbuddy.com/widgetframe.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 07:45:30 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 00:33:28 GMT
cache-control: public, max-age=300, s-maxage=86400
etag: W/"b314f8ef781f2a4b02e746dac72aedde"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RgP6LrzhRWHpQOWN361qkJaGzxdYyIrVzztLcKHg7gBZCkZMUbMbTg==
age: 52484
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=5820557&tm=gtm002&Ver=2&mid=76bccbba-186f-4d8c-8732-45934a48062c&sid=3511d6a039bf11edbaf979aabaedf5df&vid=351219e039bf11edb0f42d8c7e35a7fd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&p=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1532&evt=pageLoad&sv=1&rn=60925
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5820557&tm=gtm002&Ver=2&mid=76bccbba-186f-4d8c-8732-45934a48062c&sid=3511d6a039bf11edbaf979aabaedf5df&vid=351219e039bf11edb0f42d8c7e35a7fd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&p=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1532&evt=pageLoad&sv=1&rn=60925
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5820557&tm=gtm002&Ver=2&mid=76bccbba-186f-4d8c-8732-45934a48062c&sid=3511d6a039bf11edbaf979aabaedf5df&vid=351219e039bf11edb0f42d8c7e35a7fd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&p=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1532&evt=pageLoad&sv=1&rn=60925 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0B0750AC4BB56ECB36E4428A4A406F5D; domain=.bing.com; expires=Mon, 16-Oct-2023 15:08:11 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E9FF6D2795CD4BDBB1673E18C745A136 Ref B: OSL30EDGE0122 Ref C: 2022-09-21T15:08:11Z
date: Wed, 21 Sep 2022 15:08:10 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3ef019ce781ddbb79938868e1bf969be
27db5803c535a597bb29c96fc111255b14f4219d
60ade2388afdea80bb7c88016be34c92f7005c21dda6fe6ad07d4dba060744d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
200 OK 86 kB URL HTTP/2 adservice.google.com/ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
IP
File type ASCII text, with very long lines (64471)
Hash 45a3319be1d4ac2ae3b6fceb65bedcca
ab6709fad3825c25c0bea3fb753a1e82ed05af61
acc0c9478d3d8d6e25f585c0a7221b4b9a99dd87693162feaed24c03e5c1ed0a
GET /ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11203568.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 508
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
200 OK 553 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (769), with no line terminators
Hash dee32d28bfdd93ab6640f246aa518698
583e3f809c18e82197ad4efafd336bfd5cf704c3
6eac123e564d0ddfd81419ee01d4804905d01497e714b29e06ddb6581d205735
GET /ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11203568.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 553
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1379067-1&cid=956616143.1663772891&jid=912935164&gjid=875884707&_gid=1785399874.1663772891&_u=aGBAgEALAAAAAE~&z=2577373
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1379067-1&cid=956616143.1663772891&jid=912935164&gjid=875884707&_gid=1785399874.1663772891&_u=aGBAgEALAAAAAE~&z=2577373
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1379067-1&cid=956616143.1663772891&jid=912935164&gjid=875884707&_gid=1785399874.1663772891&_u=aGBAgEALAAAAAE~&z=2577373 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fjellsport.no
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.fjellsport.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 15:08:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1006168981/?random=1663772890849&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=1616120268&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1006168981/?random=1663772890849&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=1616120268&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1006168981/?random=1663772890849&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=1616120268&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/785054750/?random=1663772890852&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=3665640170&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/785054750/?random=1663772890852&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=3665640170&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/785054750/?random=1663772890852&cv=9&fst=1663772400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=4&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9j0&sendb=1&data=event%3Dview_item&frm=0&url=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black%20%7C%20Fjellsport.no&async=1&fmt=3&is_vtc=1&random=3665640170&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/5820557.js
200 OK 666 B URL HTTP/2 bat.bing.com/p/action/5820557.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash cf913fabdf19d6efe36a318b09618183
2a9a7781b1e8c3d369bfad6bccbed83f99ef59ce
6581446f3f6ca25bfd9a66729211af2d7249110acbaba669ba527525ef3bbf52
GET /p/action/5820557.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=3890A4FA6F2F6F5A0893B6DC6EDA6E75; domain=.bing.com; expires=Mon, 16-Oct-2023 15:08:11 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0D46E1B86432475FB6C71B4C13A1320B Ref B: OSL30EDGE0122 Ref C: 2022-09-21T15:08:11Z
date: Wed, 21 Sep 2022 15:08:10 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=3072056353006498&ev=ViewContent&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891115&cd[content_ids]=%5B%22FS188912%22%5D&cd[content_name]=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&cd[content_type]=product&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET
200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=3072056353006498&ev=ViewContent&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891115&cd[content_ids]=%5B%22FS188912%22%5D&cd[content_name]=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&cd[content_type]=product&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=3072056353006498&ev=ViewContent&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891115&cd[content_ids]=%5B%22FS188912%22%5D&cd[content_name]=Alfa%20Horizon%20A%2FP%2FS%20Gtx%20Black&cd[content_type]=product&sw=1280&sh=1024&v=2.9.83&r=stable&ec=1&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Wed, 21 Sep 2022 15:08:11 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=3072056353006498&ev=PageView&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891112&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET
200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=3072056353006498&ev=PageView&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891112&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=3072056353006498&ev=PageView&dl=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1663772891112&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663772891112.844038183&it=1663772890846&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Wed, 21 Sep 2022 15:08:11 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3ef019ce781ddbb79938868e1bf969be
27db5803c535a597bb29c96fc111255b14f4219d
60ade2388afdea80bb7c88016be34c92f7005c21dda6fe6ad07d4dba060744d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/syncframe?topUrl=www.fjellsport.no&origin=onetag
200 OK 5.4 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.fjellsport.no&origin=onetag
IP
Hash d6befcd082f18da51f7d647a91d80c38
2e9d8b8773d84dc9d7de0f3304794631dabc0dae
3650e51b6fc6b519f1bf733df00af925b6264c2319dcd8b4f0fd123d2daa45ac
GET /syncframe?topUrl=www.fjellsport.no&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:10 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=e73e5760-c4ff-4e7a-bf9c-70f64d5221e0; expires=Mon, 16 Oct 2023 15:08:10 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 666530
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:11 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=gjHJvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRmlsZ0VidVE3b0FUYWklMkZ4SEJwdzQ4RmtMeFVrS0tRcEhJUCUyQmVFNnJoY2w; expires=Mon, 16 Oct 2023 15:08:11 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 259525
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dapi.videoly.co/1/event/0/387/?brand_ids=null&i=pg-14456481078&delay=242&yt_ready=-1&product_id=629f22ad028f62005758af8e&uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&gl_split=undefined&p=1&vn=1&pl=nb&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&br_n=Firefox&br_v=96.0&br_w=1268&br_h=939&oos=0&e=renderDelay&sId=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw
200 OK 80 B URL HTTP/2 dapi.videoly.co/1/event/0/387/?brand_ids=null&i=pg-14456481078&delay=242&yt_ready=-1&product_id=629f22ad028f62005758af8e&uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&gl_split=undefined&p=1&vn=1&pl=nb&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&br_n=Firefox&br_v=96.0&br_w=1268&br_h=939&oos=0&e=renderDelay&sId=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c3712fe3ca987ce9ef2eb1a966fb9bc0
73497690c04c433b374055e3fe8ebba8b28c082a
fcb8b1d342705c55b64aa874efdd78d9ea10aba4463252f03c6f54c325d7091e
GET /1/event/0/387/?brand_ids=null&i=pg-14456481078&delay=242&yt_ready=-1&product_id=629f22ad028f62005758af8e&uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&product_view_uuid=51cecfed-d74d-4e13-9c00-c3753cc0bcbd&gl_split=undefined&p=1&vn=1&pl=nb&hn=www.fjellsport.no&href=https%3A%2F%2Fw%C4%88.fjellsport.no%2Fmerk%C4%9A%2Falfa%C4%9E%C4%A0a-h%C4%92izon-%C4%A5p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68%C5%822%26channa%C4%B7e%3D03%C5%82f96%C5%A640%C5%A233%C5%A212d3735%C5%B2%C5%8A45%26utm_campaign%3D%C5%BA%C5%BC%C5%BE%C4%ABtent%C6%87%C5%BB%C5%BDsourc%C5%A0%C4%9Clko%C4%ABo%C6%88%C5%BD%C4%99dium%3Dcpc%C6%9F_%C6%8Cr%C6%A5%26vari%C5%9BtId%3D%C5%AD1-7576&br_n=Firefox&br_v=96.0&br_w=1268&br_h=939&oos=0&e=renderDelay&sId=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw HTTP/1.1
Host: dapi.videoly.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Cookie: vdly=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:11 GMT
content-type: image/gif
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
set-cookie: vdly=s%3A4DXzX7PjeF1MoUqgLRv2F3aQZQuSlTsA.jJgNLpLQF7W%2F2G2AsxhlZ17W2F89l3yUTf2VizpyiNw; Path=/; Expires=Fri, 23 Dec 2022 15:08:11 GMT; HttpOnly; Secure; SameSite=None
via: 1.1 vegur
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPWxz%2BSG5X86Ch0b%2F4nob92xwWDgYsXXB%2BaBA6RT%2BsXkH1xH6dhB%2FcShSS%2BbfYh8EtOBXDrkp2HVa5e2GeejSBytCgv3hL7u6pPThGYCVSAOdGaJRx%2B2gz7N3arXtp5KsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3b6fa494ab4ff-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 32d60a76f04221b40dd32e506b6cd47d
89367db15ef63d7916871a006276a981c8b7aec3
c36ad4f90208ed924129ff27e00a6662cc5cc4bf8c4c70e07d04107ddb47d817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=11203568;type=produ0;cat=produ0;ord=4737066675616;gtm=2wg9j0;auiddc=401301485.1663772889;u1=undefined;u3=FS188912;u4=Skist%C3%B8vler%20fjellski%2C%20langrenn%20og%20rulleski;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Wed, 21 Sep 2022 15:08:11 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=11203568;type=all-p0;cat=visit0;ord=6800687187873;gtm=2wg9j0;auiddc=401301485.1663772889;u1=%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black;~oref=https%3A%2F%2Fwww.fjellsport.no%2Fmerker%2Falfa%2Falfa-horizon-a-p-s-gtx-black%3Fkk%3Da4c6294-18360978d92-68c62%26channable%3D03c6f96964003330312d3735373645%26utm_campaign%3D%26utm_content%3D%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_term%3D%26variantId%3D301-7576 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 15:08:11 GMT
expires: Wed, 21 Sep 2022 15:08:11 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 47bf7ee94f879b9e63d0e7b494e34075
5ae381f5d92ee23c60fa9cddc750276052ba14e5
77b81a427f2d4c7c5d38c4e05272b8f64a17127ad7fd3645dcb9002790eeaa43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4280
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Last-Modified: Wed, 21 Sep 2022 13:56:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 314 B IP
Hash 47bf7ee94f879b9e63d0e7b494e34075
5ae381f5d92ee23c60fa9cddc750276052ba14e5
77b81a427f2d4c7c5d38c4e05272b8f64a17127ad7fd3645dcb9002790eeaa43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Last-Modified: Wed, 21 Sep 2022 13:56:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 32d60a76f04221b40dd32e506b6cd47d
89367db15ef63d7916871a006276a981c8b7aec3
c36ad4f90208ed924129ff27e00a6662cc5cc4bf8c4c70e07d04107ddb47d817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gem.gbc.criteo.com/newidsd
200 OK 44 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0dde768217d6b66cbeda3ac3d1efb6f9
eff1245b35319ef1435129ec3c74a18b2f3abf9c
31fa9901cd1f59e63f1e2b4a342fddc0f564c37513443c4ee01d868899d1938c
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:10 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 50615
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.40/clarity.js
200 OK 23 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.40/clarity.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54745)
Hash 6a87d835543a151541da0ae963173dd7
80bac2abc74d2fa93a63ff82514fd64ee8caf9a0
c806647a143cb92f41ed1e60c6be245cd4e78b447c90adbed881ca54ecfa7337
GET /eus2/s/0.6.40/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 23442
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8c7baa5622330"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 02ygrYwAAAABYc/8gWmlmRolax9EsygMnTE9OMjFFREdFMTgwNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Sep 2022 15:08:11 GMT
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/5820557
200 OK 1.5 kB URL HTTP/2 www.clarity.ms/tag/uet/5820557
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1540), with no line terminators
Hash f39b8d0a503524ad7d6fce6bbb3822ea
7d44ac380dd0b3f1da6627dfee8703cace42f690
f6693e1bb496110213defd17103e524d25615e7b1da683194510975b076251ae
GET /tag/uet/5820557 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=7e7a333895f24f4f90248b241be90cd3.20220921.20230921; expires=Thu, 21 Sep 2023 15:08:11 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 02ygrYwAAAAAriHVb+bGwSZz1cX5MFBcnTE9OMjFFREdFMTgwNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Sep 2022 15:08:11 GMT
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&RedC=c.clarity.ms&MXFR=36898730E38A657B3E539516E78A6B94
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&RedC=c.clarity.ms&MXFR=36898730E38A657B3E539516E78A6B94
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&RedC=c.clarity.ms&MXFR=36898730E38A657B3E539516E78A6B94 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fjellsport.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&MUID=062357257B84696B008345037A716826
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=062357257B84696B008345037A716826; domain=c.bing.com; expires=Mon, 16-Oct-2023 15:08:11 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2C0CFC938C7C435E90BCA91314A61CC4 Ref B: OSL30EDGE0122 Ref C: 2022-09-21T15:08:11Z
date: Wed, 21 Sep 2022 15:08:10 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&MUID=062357257B84696B008345037A716826
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&MUID=062357257B84696B008345037A716826
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=5A9FE831EFBF48D99BE938273774B468&MUID=062357257B84696B008345037A716826 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fjellsport.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 21-Sep-2022 15:18:11 GMT; path=/; SameSite=None; Secure;
date: Wed, 21 Sep 2022 15:08:10 GMT
content-length: 42
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:08:11 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 708566
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2982aa42fcb63203a329443ba5917d85
35f67b89e0f4b0a0c01e3e44153801e31f25a2ec
f88376d3d99b9d9359b407bf36acc4689b246f0bbe71504b4ba78b50f7beb032
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 13:24:49 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x68wjMlKlv0zVIGV4wV8cuqlCRcAcB7EFQVuZ2ouAAEDvE0p3oLakQ==
Age: 6203
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:08:12 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA&C=1
cf-ray: 74e3b6ffd8e91c0a-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Yyso3J53NLEGWLqhfA--4QAA; Path=/; Domain=casalemedia.com; Expires=Thu, 21 Sep 2023 15:08:12 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4553; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:08:12 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4553; Path=/; Domain=casalemedia.com; Expires=Tue, 20 Dec 2022 15:08:12 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wUkwN%2ByjsRFgjC5ivgmzwGFDa6NjfxdvL4ElaFBKMi1l8Vqfy5LMkzOC4kRbP9QzbwyrqUkgdrFyL3UjFmcmcwQo0ln%2FqHtAnvpvBNaO8QYssN82WSoQaiOTUXqu4FhEVbGW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5e7aa760e883113e03f015d5ed296622
f0698704d8670863358cb513fc5e8837d06863c9
9be8aa87eeb7061d02d63eefebb4ad9563c8da42266e02952fc673cdf880e117
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm=&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ&google_tc=
date: Wed, 21 Sep 2022 15:08:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 15:23:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-Wtyi46F9mtUufYKX9-ft8aXAjcnRUD2_tiQDEg
200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-Wtyi46F9mtUufYKX9-ft8aXAjcnRUD2_tiQDEg
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-Wtyi46F9mtUufYKX9-ft8aXAjcnRUD2_tiQDEg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3067744923580249000V10; Expires=Thu, 21 Sep 2023 15:08:12 GMT; domain=.media.net; Path=/;
data-c-ts=1663772892;Expires=Fri, 21 Oct 2022 15:08:12 GMT;path=/;domain=.media.net;
data-c=k-Wtyi46F9mtUufYKX9-ft8aXAjcnRUD2_tiQDEg~~3;Expires=Fri, 21 Oct 2022 15:08:12 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 21 Sep 2022 15:08:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 21 Sep 2022 15:08:12 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm=&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ&google_tc=
302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm=&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 89f172c582329d74ea11411b346f4c8f
17c9fad3fd79f168de1f8dacdacf9610d03e5e6c
e09dbb871081877ee0ca841a12b9a953e36a0944955e046e26cbf2f7f216231d
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_cm=&google_hm=ay1lRUZ0WGFGOW10VXVmWUtYOS1mdDhhWEFqY2s3WkRBNy1WNC1uUQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-eEFtXaF9mtUufYKX9-ft8aXAjck7ZDA7-V4-nQ&google_error=3
date: Wed, 21 Sep 2022 15:08:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-xChfcqF9mtUufYKX9-ft8aXAjcm5t6W9vUxPPA&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:12 GMT
content-type: image/gif
content-length: 43
cf-ray: 74e3b70059c51c0a-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MhMdjNBRHIWegDhE0Q%2BjnTZ1nuEbTPk5lkIGHsgdp6%2F79OhiaLlHQFocVJoGMrHDZxdgqw%2BXfDnKe6yXW7xeEPoSlVh75KZx7BT4r6vBxxPH2eoV2IfHWQl7VhV57YYGRnZn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 15:08:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: c8507849-c548-4a29-8aba-7290eeaf28bf
Set-Cookie: uuid2=7280756462484161932; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 15:08:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 537.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
criteo-sync.teads.tv/um?eid=80&uid=k-QhJCJKF9mtUufYKX9-ft8aXAjckm6BVBnYy8ZQ
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-QhJCJKF9mtUufYKX9-ft8aXAjckm6BVBnYy8ZQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-QhJCJKF9mtUufYKX9-ft8aXAjckm6BVBnYy8ZQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 21 Sep 2022 15:08:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 21 Sep 2022 15:08:12 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash ef22746354dc8b5189d4e6c76270b510
f8d168a64fa6aef7421e33fccbfa57ec0721c412
9b039b092a421e633ef47389c9213751f5cc1d881df3154b95c808eb9f742249
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 15:08:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 13:56:50 GMT
Expires: Tue, 27 Sep 2022 13:56:49 GMT
Etag: "f8d168a64fa6aef7421e33fccbfa57ec0721c412"
Cache-Control: max-age=513516,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74e3b700ac650afe-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 3423ede4e385b098f165a74c5866fbd9
93c10d1e17d52b5a776c9db81e0edeefee332534
16fe3d4ac2f3f66754d28da5da6fa16d1cf9ff0b7ecfa139daffea89a7e1e623
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 13:51:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 7e72d0126a31fd2be9fd85369e3f8c70
14affab3e2fb05cc7e77b45e6519a258de91d73b
78cdd8cf188c2b94cb04ae9ee1565779d11bc85edf4bc156dc9ca91aaf810d89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4392
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 13:55:00 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2074
Origin: https://www.fjellsport.no
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.fjellsport.no
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Wed, 21 Sep 2022 15:08:11 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 8449eee5d39e7c47bbce4b14fd8e84de
e9d56fc7e163661f3922dd23fc4e42b747147814
657fc1ef75bf1b156aeba67425911db52aac8ba24cb7db636507c7ac8efa30db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1206
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 14:48:06 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 314
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-pIDuW6F9mtUufYKX9-ft8aXAjcmyP3ouMYmh2A&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-pIDuW6F9mtUufYKX9-ft8aXAjcmyP3ouMYmh2A&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-pIDuW6F9mtUufYKX9-ft8aXAjcmyP3ouMYmh2A&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:08:11 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw&KRTB&23144-uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw&KRTB&23286-uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw&KRTB&23287-uid:k-oRzYv6F9mtUufYKX9-ft8aXAjcn3nuQQPgSfNw; domain=pubmatic.com; secure; expires=Fri, 21-Oct-2022 15:08:11 GMT; path=/
PugT=1663772891; domain=pubmatic.com; secure; expires=Fri, 21-Oct-2022 15:08:11 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash aaa79dea80a2e3526cd8402e64c299fa
7e7842f9603675c96512f3d7a0688d81cfadacb1
90880f3c42ee7a3fc957e5ca712636f4ae5ec6aac948653950b227ea3bbb1959
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 14:06:19 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zNWqVVSDPlukQBudlEm9cwqE5f5Lv1iYh4hp3jlS4Vl_ZoEl7l8NkQ==
Age: 3713
x.bidswitch.net/sync?dsp_id=46&user_id=k-C8tPtKF9mtUufYKX9-ft8aXAjckP-8GVhIe01g&expires=30
302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-C8tPtKF9mtUufYKX9-ft8aXAjckP-8GVhIe01g&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-C8tPtKF9mtUufYKX9-ft8aXAjckP-8GVhIe01g&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 21 Sep 2022 15:08:12 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-C8tPtKF9mtUufYKX9-ft8aXAjckP-8GVhIe01g&expires=30
Set-Cookie: tuuid=766152ea-171f-49e8-9e07-4bcb2facbb81; path=/; expires=Thu, 21-Sep-2023 15:08:12 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663772892; path=/; expires=Thu, 21-Sep-2023 15:08:12 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663772892; path=/; expires=Thu, 21-Sep-2023 15:08:12 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663772892; path=/; expires=Thu, 21-Sep-2023 15:08:12 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2d521881eb3e062dc90e99189d9dd722
1941137461b6ce4b0c937be9a7e000c6184c755e
5c10c02e6fbf69b24e9fd464141c01e66dcc68d62c955e90a30f7c1eebe2bec0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139135
Date: Wed, 21 Sep 2022 15:08:12 GMT
Etag: "632a8c68-1d7"
Expires: Fri, 23 Sep 2022 05:47:07 GMT
Last-Modified: Wed, 21 Sep 2022 04:00:40 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: glBfUYmX554yJzvPk77zmkwE6wmqWow9m5_8doBvD20GVl00MeqE-A==
Age: 6387
ocsp.digicert.com/
200 OK 471 B IP
Hash a388d1785dc7b642a92cc8a6b016993c
a5637d7c51f8eeb7ff77eb989a488fa111a94b63
7ae715c1ed89779c07fecdd6a82b6bbc2347a37dbf7e9b6fafdeb07549be3798
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 749
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 14:55:44 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 4492bbf1a025eb5459b73b8c47a7a9e5
ff9afbd02ae05f38da05b813e2b2916294dc59bf
59c99e0b62ee43f09d7a8eedad456a0a8c62bef7f003a0aba078725c2306acdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5422
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 13:37:50 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash a76cf05e93c25a824c39294e8f8b9517
f38d9f687947c6816685cd03448847aa16104f5f
0f0c176669e2a60f8f7f3bcbc42cb2dcef99d89e13001311e9d9412c416c1b19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5053
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 13:43:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31f3d43a034bf31725798553ad54b1b8
cfb9ca710a6b1a08d4442838394cb610a5b609b3
58ba14fceb02b9b94a113f9faa81949be5e6c9a14d1a9fa64af588c919c347bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58BA14FCEB02B9B94A113F9FAA81949BE5E6C9A14D1A9FA64AF588C919C347BC"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8356
Expires: Wed, 21 Sep 2022 17:27:28 GMT
Date: Wed, 21 Sep 2022 15:08:12 GMT
Connection: keep-alive
status.thawte.com/
200 OK 471 B IP
Hash 52d128a2bcae2ca311aee1a58a1a8fbb
f9261c796d92293f49feb1a37604bc6232c5ec62
e18e3c905c502f73bdc7ae666554999f0e187fa80255826232a8e33f9bb92372
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 15:08:12 GMT
Last-Modified: Wed, 21 Sep 2022 14:50:20 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Noto+Sans:400,700&subset=latin-ext&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans:400,700&subset=latin-ext&display=swap
IP
GET /css?family=Noto+Sans:400,700&subset=latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 15:08:09 GMT
date: Wed, 21 Sep 2022 15:08:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.videoly.co/1/quchbox/0/387/quch.js
200 OK 0 B URL HTTP/2 api.videoly.co/1/quchbox/0/387/quch.js
IP
GET /1/quchbox/0/387/quch.js HTTP/1.1
Host: api.videoly.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:10 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,PUT,POST,OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=265361
etag: W/"40c91-8gJ13EjYNc9cMJVDK9hg0RU7J0c"
via: 1.1 vegur
x-powered-by: Express
cache-control: max-age=1800
cf-cache-status: HIT
age: 7401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5B26N%2FSILi%2FxVhDCZLutVGq0ybShv34CzWK6h0eK%2Fid7VIboOpjJKh6D3M8%2FStLTWbK7j5NX%2F4cEQQsRUMXfQ6cHaiwWbsduPjOnkNLnxmRGkeakhABF0gfqpycu4xVH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e3b6f61a53b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=gjHJvF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRmlsZ0VidVE3b0FUYWklMkZ4SEJwdzQ4RmtMeFVrS0tRcEhJUCUyQmVFNnJoY2w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:11 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=-1tRzV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRmlsZ0VidVE3b0FUYWklMkZ4SEJwdzQ5WVFmRTdncEpmT0JHa1p6dDdqJTJCcTQ; expires=Mon, 16 Oct 2023 15:08:11 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 290070
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
no.shoppingpunch.com/external?merchant=7246223&click_id=31f4d94539bf11edaa990242ac110003&source_id=1068-1fe4n1v--https%3A%2F%2Famazon.com--PATH--0.0011322--FjellsportNO-PO-Amazon&cmp_code=413
302 Found 0 B URL HTTP/2 no.shoppingpunch.com/external?merchant=7246223&click_id=31f4d94539bf11edaa990242ac110003&source_id=1068-1fe4n1v--https%3A%2F%2Famazon.com--PATH--0.0011322--FjellsportNO-PO-Amazon&cmp_code=413
IP
GET /external?merchant=7246223&click_id=31f4d94539bf11edaa990242ac110003&source_id=1068-1fe4n1v--https%3A%2F%2Famazon.com--PATH--0.0011322--FjellsportNO-PO-Amazon&cmp_code=413 HTTP/1.1
Host: no.shoppingpunch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 15:08:08 GMT
content-type: text/html; charset=UTF-8
location: https://no-go.kelkoogroup.net/ctl/go/sitesearchGo?.ts=1663772886870&.sig=eN0X9lPJ0Rxh_aqx95FzZpIr23g-&affiliationId=96980166&comId=7246223&country=no&offerId=a21337412b733f4d3ae3dd5831b3b0ce&searchId=1076100371022_1663772886848_7755052&service=36&tokenId=dbf5736e-e34f-4d32-8841-1632ac5a2a85&custom1=413&custom2=2247873
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkNyZ1RwVXhpVnRuSFlqL0IwYi9YN3c9PSIsInZhbHVlIjoiWnpBQWZ1eUtXNzJ0akQremRURkRWczNLZE9yajFvNHdEd2FZL1o3Vzd5TlU1bUVtU3JMNWRqTHAyc3Fpa0U5TDROMlpSelR0bGJXMC9CcHl3eWtsTWJRTjA5a1grSklIQXRmVEhVejRkZk9JUnJML2NOenlqN0VyS01DajEwZ3YiLCJtYWMiOiI1ZmQxYzNhNjZkMDhhMDBhYjllNGEzYzliNmE5OTA0ODNkNzBjNGRiMTBjMDE5YzVhZDg2YThiMzk5ZThkYzFmIiwidGFnIjoiIn0%3D; expires=Wed, 21-Sep-2022 17:08:08 GMT; Max-Age=7200; path=/; samesite=lax
your_new_session_cookie_name=eyJpdiI6IjNBbnVPTUVYVXBFRFVUV1hzRi9IekE9PSIsInZhbHVlIjoid1l0cktBTCtyVjl4QWg5Ly9Jdll3eC9aSFc4YmVEUVIycjZxUURmZWtKVzVIVlF3T09DKytMUGp6RjJWY2ZSTUNLSTFHQmUweUF4cTF1OTFCQWRiQkhYZG0vR1dQYk9DQ3hYTFdVV0htMjFEMG1DZTRKUDNTNXA5WFZtRnJVNm8iLCJtYWMiOiJiMTEyZWJhYjhkNDkxYjNjYmMxYTgyYTc0MzQzNjczODZjMWRkNmFlMGE2Zjc0MWY4OTRmMzk4YmFkNTg3NDFiIiwidGFnIjoiIn0%3D; expires=Wed, 21-Sep-2022 17:08:08 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SPhidpju3FLVLr65C81K9sp1kpZiCkTO3TSg4pG7AbjQ20w2DLQpQWT7upj3x1uRDloRkfpuOaIv%2Flmr5ZDesBlmAM5ToZgTQ0ncCYGHJeK0UKWyic2XVDDvpuP3gxqwWCEflazd5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3b6ddec1e0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widget.porterbuddy.com/porterbuddy-widget.js
200 OK 0 B URL HTTP/2 widget.porterbuddy.com/porterbuddy-widget.js
IP
GET /porterbuddy-widget.js HTTP/1.1
Host: widget.porterbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 07:45:31 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 21 Sep 2022 03:24:01 GMT
cache-control: public, max-age=300, s-maxage=86400
etag: W/"ed660fa50df3fc2ce6a6c75afa1419a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1SKEZT_26S4iutm6rPRjjxDzjEpjQCZNhgJjWHe6e_b_CKsiQ5iYyQ==
age: 42250
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fjellsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:08:10 GMT
content-type: text/javascript
last-modified: Thu, 25 Aug 2022 11:02:07 GMT
etag: W/"630756af-a8d9"
expires: Thu, 22 Sep 2022 15:08:10 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:11 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 96750
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ymcfAKF9mtUufYKX9-ft8aXAjcnYvvWipip5GgIYSMMKFYUt
200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ymcfAKF9mtUufYKX9-ft8aXAjcnYvvWipip5GgIYSMMKFYUt
IP
GET /usersync/push?partner=criteo&partnerId=k-ymcfAKF9mtUufYKX9-ft8aXAjcnYvvWipip5GgIYSMMKFYUt HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 15:08:12 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2235cbd140-39bf-11ed-8643-479f71036f56%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 05 Oct 2022 15:08:12 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2235cbd140-39bf-11ed-8643-479f71036f56%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 05 Oct 2022 15:08:12 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-ymcfAKF9mtUufYKX9-ft8aXAjcnYvvWipip5GgIYSMMKFYUt%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 05 Oct 2022 15:08:12 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-qiEeIqF9mtUufYKX9-ft8aXAjcn_pjtQ8mhzQw
200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-qiEeIqF9mtUufYKX9-ft8aXAjcn_pjtQ8mhzQw
IP
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-qiEeIqF9mtUufYKX9-ft8aXAjcn_pjtQ8mhzQw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 15:08:12 GMT
x-fastly-to-nlb-rtt: 22929
access-control-allow-credentials: true
X-Firefox-Spdy: h2
142.250.74.161
157.240.200.14
104.18.19.126
185.60.164.26
3.126.140.73
23.36.76.226
141.226.228.48
185.64.189.110