noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip
200 OK 519 B URL HTTP/1.1 noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip
IP
ASN #30633 LEASEWEB-USA-WDC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (519), with no line terminators
Hash 900f207b3a4baa17633ab97739e6870e
4d10e860a84b8bf8e1bf30779983f5fad24a76fb
9031fdf2ddb71aaeeb6f6a3fb2e567a35cfb57a46a05df7197d68422ce180e55
Analyzer Verdict Alert fortinet Malware
GET /tiuvgorabwbd/kj/YM/FnAmaqZm.zip HTTP/1.1
Host: noseaceptandevoluciones.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 519
content-type: text/html; charset=utf-8
date: Mon, 30 Jan 2023 09:04:36 GMT
server: nginx
set-cookie: sid=1ea3785e-a07d-11ed-8683-14c4180132d1; path=/; domain=.noseaceptandevoluciones.com; expires=Sat, 17 Feb 2091 12:18:43 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10918
Expires: Mon, 30 Jan 2023 12:06:34 GMT
Date: Mon, 30 Jan 2023 09:04:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13181
Expires: Mon, 30 Jan 2023 12:44:17 GMT
Date: Mon, 30 Jan 2023 09:04:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 08:43:11 GMT
content-type: application/json
age: 1285
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Mon, 30 Jan 2023 11:21:17 GMT
Date: Mon, 30 Jan 2023 09:04:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CwyhzNr/rxoJYim7IMBdPIA1jJS4wmsGHbrl5fLHSUDrwv6vxXuXvM5YSsEPY/JyGh6+INqjAzA=
x-amz-request-id: 3DMNATAEVKHRTTH3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 08:50:40 GMT
age: 836
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 09:04:36 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
noseaceptandevoluciones.com/favicon.ico
404 Not Found 9 B URL HTTP/1.1 noseaceptandevoluciones.com/favicon.ico
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: noseaceptandevoluciones.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip
Cookie: sid=1ea3785e-a07d-11ed-8683-14c4180132d1
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Mon, 30 Jan 2023 09:04:36 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 08:49:04 GMT
age: 933
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8168
Expires: Mon, 30 Jan 2023 11:20:45 GMT
Date: Mon, 30 Jan 2023 09:04:37 GMT
Connection: keep-alive
noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTA3NjY3NiwiaWF0IjoxNjc1MDY5NDc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3ZnbGsycHNnZWh1djNyb2cwcjdxNGgiLCJuYmYiOjE2NzUwNjk0NzYsInRzIjoxNjc1MDY5NDc2MzgyNTY1fQ.iMhpHGdvKYuMxRny89y7py0kn-220u13XcAI8UNXhdc&sid=1ea3785e-a07d-11ed-8683-14c4180132d1
302 Found 11 B URL HTTP/1.1 noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTA3NjY3NiwiaWF0IjoxNjc1MDY5NDc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3ZnbGsycHNnZWh1djNyb2cwcjdxNGgiLCJuYmYiOjE2NzUwNjk0NzYsInRzIjoxNjc1MDY5NDc2MzgyNTY1fQ.iMhpHGdvKYuMxRny89y7py0kn-220u13XcAI8UNXhdc&sid=1ea3785e-a07d-11ed-8683-14c4180132d1
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /tiuvgorabwbd/kj/YM/FnAmaqZm.zip?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTA3NjY3NiwiaWF0IjoxNjc1MDY5NDc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3ZnbGsycHNnZWh1djNyb2cwcjdxNGgiLCJuYmYiOjE2NzUwNjk0NzYsInRzIjoxNjc1MDY5NDc2MzgyNTY1fQ.iMhpHGdvKYuMxRny89y7py0kn-220u13XcAI8UNXhdc&sid=1ea3785e-a07d-11ed-8683-14c4180132d1 HTTP/1.1
Host: noseaceptandevoluciones.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://noseaceptandevoluciones.com/tiuvgorabwbd/kj/YM/FnAmaqZm.zip
Cookie: sid=1ea3785e-a07d-11ed-8683-14c4180132d1
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Mon, 30 Jan 2023 09:04:37 GMT
location: http://r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
server: nginx
set-cookie: sid=1ea3785e-a07d-11ed-8683-14c4180132d1; path=/; domain=.noseaceptandevoluciones.com; expires=Sat, 17 Feb 2091 12:18:44 GMT; max-age=2147483647; HttpOnly
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iI2MqrdkOS2/PdHI0KQcUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uwNBExRWh/Jpbs8WeNd9sL2XcUY=
r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
200 OK 809 B URL HTTP/1.1 r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Hash e3c1a8a01b832ac12ec9d468f1b4b67d
c68aa85fa856f29c3c2d2c07559439d7367529ac
4d5f0e8f3cef09dab35f725eb0705549755948d0e8a51d9bfac7b85114405598
GET /redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://noseaceptandevoluciones.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Mon, 30 Jan 2023 09:04:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
r.redirekted.com/css/adren.css?n=3277298045
200 OK 243 B URL HTTP/1.1 r.redirekted.com/css/adren.css?n=3277298045
IP
Hash f72acd3fece9f7cf58643616c745b2ea
92bc529a83c5466fbf6b9e702eef1e59644687a1
e2d9fd8b995f146baf54bc35d162d3e8169a5345368058b10a3b3bf4592ed777
GET /css/adren.css?n=3277298045 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Mon, 30 Jan 2023 09:04:37 GMT
Content-Type: text/css
Content-Length: 243
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-f3"
Accept-Ranges: bytes
r.redirekted.com/js/adren.min.js?n=3277298045
200 OK 7.5 kB URL HTTP/1.1 r.redirekted.com/js/adren.min.js?n=3277298045
IP
File type ASCII text, with very long lines (7528), with no line terminators
Hash 9a9ec61d7e275f25fe83f0aa93bd2e41
8a3a23c432b601e9f8f8fe2b61f0fedbc341c9ac
55afe8ae4db5b6ca9ec5a3aca1f3a7b482ca51d0914acd250093f1a9ecbfccec
GET /js/adren.min.js?n=3277298045 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: application/javascript
Content-Length: 7528
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-1d68"
Accept-Ranges: bytes
r.redirekted.com/favicon.ico
200 OK 0 B URL HTTP/1.1 r.redirekted.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-0"
Accept-Ranges: bytes
r.redirekted.com/go?e=DwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW
200 OK 1.8 kB URL HTTP/1.1 r.redirekted.com/go?e=DwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW
IP
File type HTML document, ASCII text, with very long lines (486)
Hash f2ba512f1eedbd97c2211ebb02938e4d
a5df4492b240c882e7f4236814bb7b10d92b9a24
127207f286e266c22685dfb899392f4849cbd42dbea1f0c0a4907dc25cbe60ae
GET /go?e=DwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=60a0f2a5854af77af9d24dd52f99529a&request_id=9678fea869cc79186a6f3ee4e7a2a89f
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
Set-Cookie: uuid=979522110313977216; expires=Tue, 31-Jan-2023 09:04:38 GMT; Max-Age=86400
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Mon, 30 Jan 2023 08:24:47 GMT
Expires: Mon, 30 Jan 2023 10:24:47 GMT
Cache-Control: public, max-age=7200
Age: 2391
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
www.google-analytics.com/collect?v=1&_v=j99&a=1858966327&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1946902644.1675069490&tid=UA-32454353-1&_gid=144891149.1675069490&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=226572277
200 OK 35 B URL HTTP/1.1 www.google-analytics.com/collect?v=1&_v=j99&a=1858966327&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1946902644.1675069490&tid=UA-32454353-1&_gid=144891149.1675069490&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=226572277
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=1858966327&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyjGL9gHB-fPX0AJs70mBdfRAxkKW4RzXyfvC8S2W90aqzVzXyxKB-AKC-x3C5kGVybPFdHFp-jaC0OzsmMlKdtvXv1KL15wsbVvF9M3V80KW55wsyjQL8gGC5x3C55GVbxmK1pUpygaFbM0Zv1KCdtFs9DmqwxmZ-ZFC14QnRIQX9S0ZuEJC0bRM7ZGLsqHr-ZTn8gRrv13F4EzsmO3K9ElX7VmFtMHAbxRE55QMYImq4uJsYkaCmtvVtEwLwbHVbVvFeL3V9bFW0A2X7NUF9gwXtcFLzZJs7t3FeHPsucvCv81Xy03B9STsty3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1946902644.1675069490&tid=UA-32454353-1&_gid=144891149.1675069490&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=226572277 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Sun, 29 Jan 2023 10:07:03 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 82655
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
status.thawte.com/
200 OK 471 B IP
Hash 3fc019bfe0b9001e0e9418c99c367858
381aff18ba7449f1a167ec765b34b723665f9e2a
5e00b3da61d26d74edcc939066cbcd93a5d14798eec1d5a2625c4090057f9891
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5335
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:38 GMT
Last-Modified: Mon, 30 Jan 2023 07:35:43 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
200 OK 33 kB URL HTTP/1.1 no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12878)
Hash 40f3db19633cd294eee6d51baab6384c
b6b0d455435acc2a5e66987e3513ff05491f6fe4
937d0899fd8569a01c57dc9b259c9e45ae4b319ba36979d9e8806f1c9c5e9dc3
GET /offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.redirekted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361
clickId: 107698111_1675069478530_3227595
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=0sMTxL024d~OybA_6_xJaIMmqToQtb8Y85SYqEi3EogAlMt4L7Dhw~w-78W~WfUjeEwcPkXfNhmPSJPVV87dvOtyXlJBE9HxQ-ovpax6NV3kHu9tk6u99B7SEghJJhYk; Max-Age=31536000; Expires=Tue, 30 Jan 2024 09:04:38 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c626f-18601ebd682-9b6a2; Max-Age=31536000; Expires=Tue, 30 Jan 2024 09:04:38 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.015928S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 32583
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedd0acaaa15d56e9720040e5f07adfc64164c14e0fb5d69831350f22172be9392407b4919ab0c2cbfafa8d831739366f511d7e68b4f481fe8e27b611d741a7661cb3ab5d9183b9468e078a7535e296942ba65aac299351f4249ba529fb00fba9149723366cc9158c61c89d6169526a53bf45da7f1c6ed0da40e227d2971a0cdd9038d6abd259a0ef0b95581b3ec6174592c949934eda075134b124deb8b6eefe2e30dba2560ac8e19fbc1d9200286429636c103307ccdad60e99e79f20c1231b619ff7bb780050801d06a1496b56a078e43384cf0ee922f40682b66cbc56765f75e10e3de8ad4e54c901e71eb46e3ee072d68bf93c67a2df515ce8f54e7e713766d77020048011e44710d4fd13b6661c63ac7ef8691b1dfe49ba13486890dba6cee9c07b57e3a21ac530642ddcdd2c2ceb1d892ee8b132e3aac39dd17aea364336ad788fe2d246db232909ecfb5ffff536cb1fbfb0f5c25b5f11993d3f506d4f18a4a7e79fb8fbde63bc5a7e55128087272d1e64dd1c200f7994b9786a1b3594eb1ef290cc6fbebf65fd45aabf3514871220105507887049afaebf75e160a56889
200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=0sMTxL024d~OybA_6_xJaIMmqToQtb8Y85SYqEi3EogAlMt4L7Dhw~w-78W~WfUjeEwcPkXfNhmPSJPVV87dvOtyXlJBE9HxQ-ovpax6NV3kHu9tk6u99B7SEghJJhYk; kelkooID=a4c626f-18601ebd682-9b6a2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361
clickId: 107698111_1675069478530_3227595
country: no
Request-Time: PT0.001556S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: image/png
Content-Length: 68
no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedd0acaaa15d56e9720040e5f07adfc64164c14e0fb5d69831350f22172be9392407b4919ab0c2cbfafa8d831739366f511d7e68b4f481fe8e27b611d741a7661cb3ab5d9183b9468e078a7535e296942ba65aac299351f4249ba529fb00fba9149723366cc9158c61c89d6169526a53bf45da7f1c6ed0da40e227d2971a0cdd9038d6abd259a0ef0b95581b3ec6174592c949934eda075134b124deb8b6eefe2e30dba2560ac8e19fbc1d9200286429636c103307ccdad60e99e79f20c1231b619ff7bb780050801d06a1496b56a078e43384cf0ee922f40682b66cbc56765f75e10e3de8ad4e54c901e71eb46e3ee072d68bf93c67a2df515ce8f54e7e713766d77020048011e44710d4fd13b6661c63ac7ef8691b1dfe49ba13486890dba6cee9c07b57e3a21ac530642ddcdd2c2ceb1d892ee8b132e3aac39dd17aea364336ad788fe2d246db232909ecfb5ffff536cb1fbfb0f5c25b5f11993d3f506d4f18a4a7e79fb8fbde63bc5a7e55128087272d1e64dd1c200f7994b9786a1b3594eb1ef290cc6fbebf65fd45aabf3514871220105507887049afaebf75e160a56889
200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=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
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=0sMTxL024d~OybA_6_xJaIMmqToQtb8Y85SYqEi3EogAlMt4L7Dhw~w-78W~WfUjeEwcPkXfNhmPSJPVV87dvOtyXlJBE9HxQ-ovpax6NV3kHu9tk6u99B7SEghJJhYk; kelkooID=a4c626f-18601ebd682-9b6a2; _ga=GA1.2.438370897.1675069489; _gid=GA1.2.233134879.1675069489
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361
clickId: 107698111_1675069478530_3227595
country: no
Request-Time: PT0.002588S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
no-go.kelkoogroup.net/favicon.ico
404 Not Found 1.1 kB URL HTTP/1.1 no-go.kelkoogroup.net/favicon.ico
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8560de521c4990c7c870121fc9643508
0cacf7a6b96cceeb6ceae74d5f14dc87406a6f39
73a434285c3a752bc8c44aebd50e10f1a766853cbc7184e78d5c934c7b52b620
GET /favicon.ico HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=0sMTxL024d~OybA_6_xJaIMmqToQtb8Y85SYqEi3EogAlMt4L7Dhw~w-78W~WfUjeEwcPkXfNhmPSJPVV87dvOtyXlJBE9HxQ-ovpax6NV3kHu9tk6u99B7SEghJJhYk; kelkooID=a4c626f-18601ebd682-9b6a2; _ga=GA1.2.438370897.1675069489; _gid=GA1.2.233134879.1675069489
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Request-Time: PT0.000491S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1144
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4190
Expires: Mon, 30 Jan 2023 10:14:28 GMT
Date: Mon, 30 Jan 2023 09:04:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4190
Expires: Mon, 30 Jan 2023 10:14:28 GMT
Date: Mon, 30 Jan 2023 09:04:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4190
Expires: Mon, 30 Jan 2023 10:14:28 GMT
Date: Mon, 30 Jan 2023 09:04:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 38681
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 40396
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8d680cbaee5ef3e7b8e09b174ed6ecf
6651a0d3041920798240ea67e827c3d458769fa9
4c74e8ebff95e67da678248d3dc1d3f42d98c8a0d33d54d9d2bde36314c9f952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3678
x-amzn-requestid: 21cd1ae3-b769-418a-b7f8-5efa486db859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEvE-RIAMFpmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-6998009c289996563d78616a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XbMeLjDaYoPiw42pUbszzOEqWeUdx01NI6zVLJFgp0r3B_2dHHxX-w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:45 GMT
age: 39173
etag: "6651a0d3041920798240ea67e827c3d458769fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&initiator=timeout
303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&initiator=timeout
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&initiator=timeout HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675007824978&.sig=Azx6fTs5GziSGueTpP9WlRAXkgU-&affiliationId=96965866&comId=100540628&country=no&offerId=d5e6539d025433d8c798192cf7bde7a2&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV&custom2=jKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=0sMTxL024d~OybA_6_xJaIMmqToQtb8Y85SYqEi3EogAlMt4L7Dhw~w-78W~WfUjeEwcPkXfNhmPSJPVV87dvOtyXlJBE9HxQ-ovpax6NV3kHu9tk6u99B7SEghJJhYk; kelkooID=a4c626f-18601ebd682-9b6a2; _ga=GA1.2.438370897.1675069489; _gid=GA1.2.233134879.1675069489
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361
clickId: 107698111_1675069478530_3227595
country: no
Location: https://sweef.no/lenestoler/172-227-fladdermusen.html#/typ-fotpall/farg-langharig_wild_grey?referer=kelkoo&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Cuero+-+Fladdermusen+-+Fotpall+L%C3%A5ngh%C3%A5rig
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=6ZUy6m6RcXQXLkCj6m7yRkAx~h9Nm6v6l53VFGK2yXpQ9R68vyewi1~695WiiFK0aidqS7N293vgv0Gb1dlsZ9JI3JiVacbZpCfEtVMXA2TIEbiozYCsGjGA_HJ8uYUs; Max-Age=31536000; Expires=Tue, 30 Jan 2024 09:04:38 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.012148S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 30 Jan 2023 09:04:38 GMT
Content-Length: 0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 55722
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a5e0a2bb1cacf87189373c118adf4
079974268f755aa38fb2cb32b8bcb748353c793f
1b0519e6bfca30a31b83d427302f7e22140f5b2da6f13cac37ea9c07abc42676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11095
x-amzn-requestid: dc7c00e2-cd2d-4265-8763-3dd7dbe223ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkFyEhJIAMFjpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f1-541a17c362e95dfa5e90f58f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UuPN6Nq84hFgUDMbvpLTysWfU1JcRiecGH3tkdqDOOXBo9hVhmpMBA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:52 GMT
age: 39886
etag: "079974268f755aa38fb2cb32b8bcb748353c793f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y6bDvcD7a3-A4DLC3cSdZT-yewV1kkFqcGr7AMuqvUeGA4A0pgF4wQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:27 GMT
age: 39911
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 18a518008656f0601abde60c029be6a1
a3e3671b5e94a670835c4ac09c47c99b34e422f5
80254cfc38132931cc24631a8d19da4458e3f7b5a6b63ef1fb8a8def433f62d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80254CFC38132931CC24631A8D19DA4458E3F7B5A6B63EF1FB8A8DEF433F62D2"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8242
Expires: Mon, 30 Jan 2023 11:22:00 GMT
Date: Mon, 30 Jan 2023 09:04:38 GMT
Connection: keep-alive
sweef.no/lenestoler/172-227-fladdermusen.html
200 OK 40 kB URL HTTP/2 sweef.no/lenestoler/172-227-fladdermusen.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62243)
Hash bca7c63548c85c3b556ab36a6e5335af
23086d7c1e60d8d100bb31e2df936e763d1510cf
40bbbf4296eea5d286acc5ce4dfe7d9c2a26e1bba42861f4bb6ff49ae31c3895
GET /lenestoler/172-227-fladdermusen.html HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:38 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
x-powered-by: PHP/7.2.11
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; path=/
PrestaShop-454ccff2d55568f55b036e769cfd005b=def5020093ec23693d0303d034b8430e09a3c6d493f2a2e769ab9913077f00b3016746c8da60a28d8594c199a6653243d54514f0dc7c60f5fd9c951f728cdaac648851fa0b2a0de69467733a661b739ca4de1ffb74851567be7e4b823b79d877e7070fb931e9b4604a29cf8f2a77345c8df74e5113b3b8f6c7c1805790e1d276e061b67200615975b8f50c84188a354ded17766f5954f5a725b3f8e56e3205d56686cc326b2c8e4f969d0cda7e36b73496f23f4a38f3253b; expires=Wed, 01-Mar-2023 09:04:38 GMT; Max-Age=2592000; path=/; domain=sweef.no; secure; HttpOnly
PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b; expires=Wed, 01-Mar-2023 09:04:38 GMT; Max-Age=2591999; path=/; domain=sweef.no; secure; HttpOnly
vary: Accept-Encoding
content-encoding: gzip
content-length: 40022
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
sweef.no/themes/sweef/assets/fonts/FuturaLT.woff2
200 OK 9.0 kB URL HTTP/2 sweef.no/themes/sweef/assets/fonts/FuturaLT.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9020, version 1.0\012- data
Hash 2afc6889243afd78bc7a1d7b27309068
f797a07d93a5b0a435b62c47aee6ef2197e526c0
0780a1309430211baefceaafc485141d4cde314c8e4636f3f97cabb3bd65ecaa
GET /themes/sweef/assets/fonts/FuturaLT.woff2 HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/lenestoler/172-227-fladdermusen.html
Cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:39 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Wed, 11 Mar 2020 08:54:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 09:04:39 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-length: 9043
content-type: font/woff2
X-Firefox-Spdy: h2
sweef.no/themes/sweef/assets/fonts/FuturaLT-Heavy.woff2
200 OK 8.9 kB URL HTTP/2 sweef.no/themes/sweef/assets/fonts/FuturaLT-Heavy.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 8904, version 1.0\012- data
Hash bdba2f227e30bfb934e3298898e0635c
c9e705feea72214078d1f06b19152cf662d1238c
7a7b5d67a3c2614423fbc67f38c874011da8442aafa2caf72d9e2ddb6db3308a
GET /themes/sweef/assets/fonts/FuturaLT-Heavy.woff2 HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/lenestoler/172-227-fladdermusen.html
Cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:39 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Wed, 11 Mar 2020 08:54:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 09:04:39 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-length: 8927
content-type: font/woff2
X-Firefox-Spdy: h2
sweef.no/themes/sweef/assets/cache/theme-6537c43251.css?v=101
200 OK 19 kB URL HTTP/2 sweef.no/themes/sweef/assets/cache/theme-6537c43251.css?v=101
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash b9e12153170e4a32e86d1b65f450afdd
9f305915266f2ac16e8509b353636e1f69c63527
863ecb83c1e51f5fc529e3770eb191bc8ef1da56dd4b25252b2af6a50f5553ef
GET /themes/sweef/assets/cache/theme-6537c43251.css?v=101 HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/lenestoler/172-227-fladdermusen.html
Cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:39 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Fri, 27 Jan 2023 15:14:53 GMT
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Tue, 30 Jan 2024 09:04:39 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 18712
content-type: text/css
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=RBWnkp
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=RBWnkp
IP
File type ASCII text, with very long lines (2904)
Hash 996cb18ac2dd1a2c23c7f2a5fb12095d
cb562b6c9449c0f7bbde0864f7410a13d4ed6272
e29c439a970739a8b32b0ca80f8de503b2782e26333681a4be773b2f96b63ef6
GET /onsite/js/klaviyo.js?company_id=RBWnkp HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: OPTIONS, GET
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"0972f2aa3977bfa41b88cd33ab45dae4"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214436
x-served-by: cache-lga21965-LGA, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1252
x-timer: S1675069479.278727,VS0,VE0
vary: Accept-Encoding
content-length: 1037
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sweef.no/themes/sweef/assets/cache/bottom-31bac43251.js?v=101
200 OK 87 kB URL HTTP/2 sweef.no/themes/sweef/assets/cache/bottom-31bac43251.js?v=101
IP
Hash 5433d99c3a3f65943e30242d523e9805
115471c7466b4543a2cbb10e93fce93a6cadac4c
54970ecc9bc3696d52981e81793c0f72e68855d0e38d873eeef8397a98a08971
GET /themes/sweef/assets/cache/bottom-31bac43251.js?v=101 HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/lenestoler/172-227-fladdermusen.html
Cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:39 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Fri, 27 Jan 2023 15:14:53 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Mon, 06 Feb 2023 09:04:39 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675007824978%26.sig%3DAzx6fTs5GziSGueTpP9WlRAXkgU-%26affiliationId%3D96965866%26comId%3D100540628%26country%3Dno%26offerId%3Dd5e6539d025433d8c798192cf7bde7a2%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3D8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV%26custom2%3DjKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540628%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Sweef.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=438370897.1675069489&tid=UA-168544891-6&_gid=233134879.1675069489&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361&cd3=100540628&cd4=a4c626f-18601ebd682-9b6a2&cd5=&cd6=96965866%7C100540628%7C&z=635913259
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675007824978%26.sig%3DAzx6fTs5GziSGueTpP9WlRAXkgU-%26affiliationId%3D96965866%26comId%3D100540628%26country%3Dno%26offerId%3Dd5e6539d025433d8c798192cf7bde7a2%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3D8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV%26custom2%3DjKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540628%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Sweef.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=438370897.1675069489&tid=UA-168544891-6&_gid=233134879.1675069489&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361&cd3=100540628&cd4=a4c626f-18601ebd682-9b6a2&cd5=&cd6=96965866%7C100540628%7C&z=635913259
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675007824978%26.sig%3DAzx6fTs5GziSGueTpP9WlRAXkgU-%26affiliationId%3D96965866%26comId%3D100540628%26country%3Dno%26offerId%3Dd5e6539d025433d8c798192cf7bde7a2%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3D8gwVV53p1p2Z-t2FetFq7fFXk9yXbDTCexlXUAmqafwZbtzEexPsTcFLbI0A0EJV3ZUCWg3B8t0r7VvF7gQqt13qVyRsmOUL-AUpX1aV%26custom2%3DjKWjuHsyVPF9gQrwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540628%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Sweef.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=438370897.1675069489&tid=UA-168544891-6&_gid=233134879.1675069489&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1675069478537_1208361&cd3=100540628&cd4=a4c626f-18601ebd682-9b6a2&cd5=&cd6=96965866%7C100540628%7C&z=635913259 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Mon, 30 Jan 2023 09:04:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5QB66TZ
200 OK 85 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5QB66TZ
IP
File type ASCII text, with very long lines (18606)
Hash 94fa6add6f5daab8f7c185ba9079d3c6
a7bf35ac619011b8a7953bdded9a7de9867b22d0
c2f9c9d4c1ddd7c0a131d77a5045fb8ccccf188c01bd4f8a226b916f20aa3e99
GET /gtm.js?id=GTM-5QB66TZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 09:04:39 GMT
expires: Mon, 30 Jan 2023 09:04:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85405
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36133), with no line terminators
Hash 0db021708abc74dfe85ba118ecc34481
951536046889dba4f7ffb154aba35be53407690d
ba2dacae93edf0e6636740381c4054f26739780f7788fc679065df8d95032a00
GET /onsite/js/sharedUtils.ae687c467514b4d47273.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NnCqawIw1fpak2Up+J8/KtBbkRVWMFjw/MWRIHZNNYB9eiAhAxUuxIE2VC5q8AD8VMdQm3gq5gw=
x-amz-request-id: V04N693NW3B8EEZ0
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "1fb73e0c373ef5c434e6183564900794"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: Fmsfgx1k20uBmvmDBcCPGzYUwE5hl.MF
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga21946-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 98011
vary: Accept-Encoding
content-length: 13974
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
200 OK 11 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (34072), with no line terminators
Hash 607fe0468230d3bfaa3a62a926b3320f
4be8c81365ebeee01c3ba704d53f5cfeec8779eb
1a3ea4144fffec497f1219534e845da9db9b89b43439432874b26af2ba332367
GET /onsite/js/signup_forms.e4023c6f8e62b93d2fc6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jw+dBUh2+9ZK5qTQrVgGVAnBsm7XVumSn0rubCjlB9LrhdyBRoBfDgKpFu63cGUYt42Rjnmo/8A=
x-amz-request-id: V04WY01XTAWVPYMD
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "5cdc6d282041cb41c958e7b444513477"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: ttpFO4iWwdS_2rfLn9rvfZP1dcN.knlf
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga13621-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 162090
vary: Accept-Encoding
content-length: 11352
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
200 OK 12 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1
IP
File type ASCII text, with very long lines (36946)
Hash 85bd273072cb0dd22e5e638154e61527
a4e269d1594e4a29e19290f0f172cb1b1a082df4
58cd1b7f523caa43b29f0fa6d904d3c82491d4829575791ae47ed678a92efe57
GET /onsite/js/vendors~signup_forms.a31dd14a1ce62f91235b.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NenJFBdxfWBWOrE+S1hV2t+qSUo248+eqJkZ7PVIJJ3qO0AWiZoCcLd2/S6IpamlQVrMKAwIbJs=
x-amz-request-id: A9KBBNMK73VM94KF
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "14d5f5d749c7e30f46242493ff3f2893"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: rBkyHbrwP63IrT54R3TKQ6FrEMZmQNDN
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga21935-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 62995
vary: Accept-Encoding
content-length: 12427
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.aa7cf055e48f28bbd282.js?cb=1
200 OK 5.3 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.aa7cf055e48f28bbd282.js?cb=1
IP
File type ASCII text, with very long lines (12659), with no line terminators
Hash 1e5719bef9a29c3e7287ac08b5e2b2ef
d129764a0061300a471cb30380f111c7fc0b7af1
6ee1100c614754007ec9d1b3a313367d1851a0ba18bcfff63e62a49ec5bad9cd
GET /onsite/js/static.aa7cf055e48f28bbd282.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KnNSjGvhnyY9GXLzqrCH6+xKs4IkYpc6LQLGufO+AIXqk2X+Z5fZTQdUadmoApY4+8OVXpCI8NNQDBICBZizqg==
x-amz-request-id: V04VTKJYF01KKH9E
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "bdc532ee042e650b2a4d06cfc862f93c"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 4zv8jtgnhp0NWMPbxgpvocWDELtx98tW
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga21962-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 93799
vary: Accept-Encoding
content-length: 5320
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-tracking.klaviyo.com/onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1
200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1
IP
File type ASCII text, with very long lines (27750), with no line terminators
Hash 4130f27ac8ffe6d8372b514b42281df3
84e6672d7ac2f7aa25f3dcb4e1cd63c85fd833a4
cb7d951f9bacc656f2cdf7bb08868d653fa2450df11c1a2f65ca8f4982ee24f9
GET /onsite/js/fender_analytics.7d9ea490a2bcf6e5fa8b.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ok1pIBKKenTajb2ZnvpqLw9m6LGN/bbVrbskFadwZmoLN85EBCiXhJYlfXu4FiFZddQCuKdTm4k=
x-amz-request-id: V04XGMKFZMFWPPN7
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "741d6862910c2aa5664c150b294f6e12"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: KrrTOk0oYJRzUIk3dg9jfBxuiktosyCx
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga21943-LGA, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 93366
vary: Accept-Encoding
content-length: 10696
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18096, version 1.0\012- data
Hash f29503a1895affee5ed85d0246238af8
f474c6e8a3e4e28fb68cf7fb29bd448cdfeb0278
7164a212fb4df27bf1e006342d1686badcba58f5a5d301772c14cc7adf1d4821
GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sweef.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 18:04:40 GMT
expires: Fri, 26 Jan 2024 18:04:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:54:12 GMT
content-type: font/woff2
age: 313199
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Hash ca72fb4e277e59be50b8850190822581
159b97b22006fe2a483da0a13d33cfb3cc5aa031
f3c0fa2cd71bb91d0e3acf5d77b93c49a184e9ad941532ca8c07c82eb0bd6a6c
GET /s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sweef.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:54:14 GMT
content-type: font/woff2
age: 341921
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/damion/v14/hv-XlzJ3KEUe_YZkamw2.woff2
200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/damion/v14/hv-XlzJ3KEUe_YZkamw2.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18960, version 1.0\012- data
Hash 7b8c8d5f82b46d79e2c2aa9aa91bec50
201c9e0d3b4e8aa286ab5e02fbbdf52ba38e73b3
311a6b1295f08642cc7e8099cf4931779165acc5f6e653d91c6dfcc495385866
GET /s/damion/v14/hv-XlzJ3KEUe_YZkamw2.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sweef.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:29 GMT
expires: Sat, 27 Jan 2024 02:06:29 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 17:04:05 GMT
content-type: font/woff2
age: 284290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.lipscore.com/assets/lipscore-v1.css
200 OK 12 kB URL HTTP/1.1 static.lipscore.com/assets/lipscore-v1.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bca558ebb20f7386e0502f2310839c00
b25a1dda539c1dbd387f9d9aef38a44510c7c4d2
ea14c99a1ef394a687e8abdd7527cb11993d6731669ca0a78574072ab39acba4
GET /assets/lipscore-v1.css HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 11839
Connection: keep-alive
Date: Sun, 29 Jan 2023 10:09:38 GMT
Last-Modified: Fri, 27 Jan 2023 10:06:12 GMT
ETag: "bca558ebb20f7386e0502f2310839c00"
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8nL5Zvl3I6FA0dSpUBXknv7X2qw5uxKUD7j17ubNKG3pmGxYbUONXg==
Age: 82502
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RBWnkp
200 OK 427 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=RBWnkp
IP
File type JSON data\012- , ASCII text, with very long lines (1726), with no line terminators
Hash 8e3ed86fef883f3ea30df61709044618
c01e6164ad6186476d7ab1c7a150301bfd0a413b
bf087b9bb9f4c88e1f88ba62befec18ed9a25b97c5faa80beff2f4621ee5f6b6
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=RBWnkp HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 1190216
x-served-by: cache-bos4648-BOS, cache-bma1657-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 2478
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 427
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/RBWnkp/full-forms
200 OK 8.9 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/RBWnkp/full-forms
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ecc51d926205fbfcb001e343859996b3
0c88f4df272b2567ee5401b2bb2f444e3e0c2ceb
85d76d0e6042041e2f7875aaa1ead697b580776e394a586c543e2be65d6d207d
GET /forms/api/v6/RBWnkp/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CQobDFy87fPlILfZgNg03ngWNCfD0CLmjX3MC9mDGJR71NoSVOGg0NdNMoPHvTpj6YdHvxBV0rM=
x-amz-request-id: FYCEQ3YCMNZMHRS4
last-modified: Wed, 25 Jan 2023 11:56:49 GMT
etag: "697c8876a607f3e7983927a6432441e3"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/RBWnkp custom-fonts/RBWnkp
x-amz-version-id: g2Xz7WRe2oiQbyFlQfkKx2BbFdldE6ep
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
via: 1.1 varnish
age: 421662
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 2229
x-timer: S1675069480.705447,VS0,VE0
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 8860
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
200 OK 1.8 kB IP
Hash a0eee413716f04b4080b95d043dd35fa
0e1b294b1c4dd05447aaadfd9a0c2c5060e80b5a
896758c0ca9332ffdacde3db54c1f3d0dfdddf6e020b42515fd2caedd084b3c3
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 09:04:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 19:26:05 GMT
Expires: Mon, 30 Jan 2023 19:26:05 GMT
ETag: "0e1b294b1c4dd05447aaadfd9a0c2c5060e80b5a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
service.giosg.com/live2/e6f71308-d397-11e9-84f3-0242ac110012
200 OK 2.0 kB URL HTTP/2 service.giosg.com/live2/e6f71308-d397-11e9-84f3-0242ac110012
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3867), with no line terminators
Hash 52e1ff8dc3414e3e65d1367232a9aa03
7ce427feee14e857391d877c45388f7485b4c813
a2a8be9229ca89b26ef9ab9f947622f4b33c2f92b52aea901bc74f5dca8e9b7d
GET /live2/e6f71308-d397-11e9-84f3-0242ac110012 HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=60, public
content-encoding: gzip
content-length: 2017
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 09:04:39 GMT
etag: "63d29fab-7e1"
expires: Mon, 30 Jan 2023 09:05:39 GMT
last-modified: Thu, 26 Jan 2023 15:43:39 GMT
server: nginx
vary: Accept-Encoding
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~ClientStore.2e3aa6941a04805c58f8.js
200 OK 22 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~ClientStore.2e3aa6941a04805c58f8.js
IP
File type ASCII text, with very long lines (64287)
Hash 103f819128a0b6b6f23f26666a125154
3a889e823206b0bcfd006ae9beb4e5fbcf77c716
045257d42b0760b9561276913b56f6c326b614a428ce3c309eaf42e6c5af97a1
GET /onsite/js/vendors~ClientStore.2e3aa6941a04805c58f8.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: AIx88jmhpQ8GXb+BGoU7mYgPMXSGksARqBelsKhJJofrazRVdepkPJvzY9wMnUMDYffI7o0qluE=
x-amz-request-id: SXQAY7WMBWQS5180
last-modified: Wed, 11 Jan 2023 17:07:33 GMT
etag: "817c4c26394fc9954331b4d682cc6eba"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: MwpUwQpQbMRiTzIrr1HTZoDSSqXP9fa3
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 214447
x-served-by: cache-lga21934-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 24094
vary: Accept-Encoding
content-length: 22125
X-Firefox-Spdy: h2
wapi.lipscore.com/initial_data/settings/show?api_key=9e0525b72c86bd18af95b5f1&invitation_template_id=&lang=
200 OK 10 kB URL HTTP/2 wapi.lipscore.com/initial_data/settings/show?api_key=9e0525b72c86bd18af95b5f1&invitation_template_id=&lang=
IP
File type JSON data\012- , ASCII text, with very long lines (9981), with no line terminators
Hash a6a2f3dd394740173711e128a696628f
d656baa306c2b31a85390e4bd79f8bbcda16f8bf
c02e92991e559d62880284a9a2d84c28f90c88364a5eea752e56b9648e7ab061
GET /initial_data/settings/show?api_key=9e0525b72c86bd18af95b5f1&invitation_template_id=&lang= HTTP/1.1
Host: wapi.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
content-type: application/json; charset=utf-8
x-request-id: db19c8e2-e76c-44f0-a3f1-bf6d757112f8
x-runtime: 0.024748
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 943883
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675069481.808582,VS0,VE1
vary: Origin
access-control-allow-origin: https://sweef.no
content-length: 9981
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js
200 OK 22 kB URL HTTP/2 static.klaviyo.com/onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a9c20df32964173902c6f0fbda3fdbf
c8379909e7ff7cf358f1ebeab528e7743e4d8916
0009f63555e64e4e60a83e8747066d4373632202c30af01f90086862168dc4fa
GET /onsite/js/ClientStore.7a90b34cc3ff5ad92feb.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: sGgc/LknxNKe78JGhcPZuk0/gxK/hJrwbgExfjJKinJZWMxRRhBUjb+K/fetUMKk1o+JyrLcZsHAwrNn92qfRA==
x-amz-request-id: N0GTMDS9C1KFYNR6
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "531207e94bec8a7b205b2ec82753f708"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: KvmP_FiymXtEvzchzqiLfesALGA.PSPx
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 214447
x-served-by: cache-lga21974-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 24696
vary: Accept-Encoding
content-length: 21979
X-Firefox-Spdy: h2
wapi.lipscore.com/hit?api_key=9e0525b72c86bd18af95b5f1
200 OK 0 B URL HTTP/2 wapi.lipscore.com/hit?api_key=9e0525b72c86bd18af95b5f1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?api_key=9e0525b72c86bd18af95b5f1 HTTP/1.1
Host: wapi.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-credentials: true
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1675069481.810508,VS0,VE0
access-control-allow-origin: https://sweef.no
content-length: 0
X-Firefox-Spdy: h2
service.giosg.com/static/939.561a402977cd1845f6ad.js
200 OK 9.5 kB URL HTTP/2 service.giosg.com/static/939.561a402977cd1845f6ad.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (27772), with no line terminators
Hash 0df7e9b9304b63e50bac7bbd10696d25
527d61f5ba287eda248b6d42ed0ed22001c7c17f
c92d905396d571d55d8c882a2941ff28f910758fec64c7ee18383112233b2f3d
GET /static/939.561a402977cd1845f6ad.js HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=315360000, public
content-encoding: gzip
content-length: 9465
content-type: application/javascript
date: Mon, 30 Jan 2023 09:04:40 GMT
etag: "63d29fab-24f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 26 Jan 2023 15:43:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6a379969ef0ca48cbd3f48b7d2aec071
3fb823b62a997c39b8987a95a71daae7d944a37f
de207a5bc79d9924d554e3f2c7a7504b1db4371808700394da3748af73812229
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 09:04:40 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:30:26 GMT
Expires: Fri, 03 Feb 2023 14:30:25 GMT
Etag: "3fb823b62a997c39b8987a95a71daae7d944a37f"
Cache-Control: max-age=364544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79190a9f5f01b521-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6a379969ef0ca48cbd3f48b7d2aec071
3fb823b62a997c39b8987a95a71daae7d944a37f
de207a5bc79d9924d554e3f2c7a7504b1db4371808700394da3748af73812229
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 09:04:40 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:30:26 GMT
Expires: Fri, 03 Feb 2023 14:30:25 GMT
Etag: "3fb823b62a997c39b8987a95a71daae7d944a37f"
Cache-Control: max-age=364544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79190a9f5b19b505-OSL
service.giosg.com/static/973.7c8295c54b97c6a4e8bf.js
200 OK 39 kB URL HTTP/2 service.giosg.com/static/973.7c8295c54b97c6a4e8bf.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65454)
Hash ad648931f63e5a8c3ec9a0270332369c
5abc67ed69179edd98d05ddde0d5171e97718354
7342e5b46dc4fea69a67665bdbcbfb1537cbcc14e0f1c4346318899055cfef62
GET /static/973.7c8295c54b97c6a4e8bf.js HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=315360000, public
content-encoding: gzip
content-length: 39304
content-type: application/javascript
date: Mon, 30 Jan 2023 09:04:40 GMT
etag: "63d29fab-9988"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 26 Jan 2023 15:43:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
200 OK 0 B URL HTTP/2 service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-client-origin
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: x-requested-with, content-type, accept, origin, authorization, x-giosg-clientversion, x-client-origin, X-GIOSG-SCRIPT-VERSION
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3600
content-type: text/html; charset=utf-8
date: Mon, 30 Jan 2023 09:04:40 GMT
server: nginx
content-length: 0
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/532.dd9a1df84d96cf83ca19.css
200 OK 1.7 kB URL HTTP/2 static.klaviyo.com/onsite/js/532.dd9a1df84d96cf83ca19.css
IP
File type ASCII text, with very long lines (6145)
Hash 0dc1c7a389b78ca81cb988e822f60b27
46b51d1f25d7fd5801faf6fade531a522ebcf959
173dfa0bd0f19b6527e56113ebe3e9b56602cdde00eb79c8b589a64e128be82a
GET /onsite/js/532.dd9a1df84d96cf83ca19.css HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: rF+SgaY1JPHmOI2PeI/zWSe/LyjjtU/QsBKqPGP86t3Wu2nwz7zm08yMVPyC0AkKxgU4BT1hYZw=
x-amz-request-id: XKPN5MDSG2QEZVZT
last-modified: Wed, 17 Aug 2022 13:59:48 GMT
etag: "a178d611a5a0600884426f0e16e9f9e4"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: NmgOJvBkHXpa0JV2BKocdZJD4tDGqyDN
content-type: text/css
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 214446
x-served-by: cache-lga21983-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 23781
vary: Accept-Encoding
content-length: 1654
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
200 OK 118 B URL HTTP/2 static.klaviyo.com/onsite/js/styles.22c2b11c5e8fc57b054a.js
IP
File type ASCII text, with no line terminators
Hash 7e1daf71c0a5eb4afc60cf0e925b3fd5
998c71e49a91365ddde644ebb3f68fce6e09feee
a518c1897cae587b892837b44e33c1f4f6247663ab3ab838a193bd73f3b84cfb
GET /onsite/js/styles.22c2b11c5e8fc57b054a.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: E8Ldc5LYWpIVy6sMUMRkHKWE6EoVLNREb8Zxz4w5N2Lq7Lr7Mxf/AEHr/xODuHMCsJeK5dJVJtI=
x-amz-request-id: GTP1WT056WKR4Q6R
last-modified: Mon, 23 Jan 2023 23:39:50 GMT
etag: "181cb819470277818fa669b08c54fba7"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: U9mjGRX.phFwbDudSfzAIyB1cs0tp_28
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 214447
x-served-by: cache-lga13624-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 24091
vary: Accept-Encoding
content-length: 118
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
200 OK 3.8 kB URL HTTP/2 static.klaviyo.com/onsite/js/vendors~Render.70ff401011c5901815b0.js
IP
File type Unicode text, UTF-8 text, with very long lines (11557), with no line terminators
Hash 759fe340b25d1df040ba2dcd71dac270
8d69511d05fe080ff071e7b85d246fb5fb6dc23a
3fd331517c2760b605933cbdb6db4dc5550728499e612db84de5c2ad10200bb5
GET /onsite/js/vendors~Render.70ff401011c5901815b0.js HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: +Sr12p42zeA0JnV0+SXizAOFyx1q2bqlY9D38/7Q6gcQqTf42WJB3LQXMWsTEQIIr4X7bvSA6Ds=
x-amz-request-id: 0YX5RZTRRPPXQQ94
last-modified: Tue, 24 Jan 2023 16:25:42 GMT
etag: "6050cb7857ea2cda4fbbd931d3a27604"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: TAUsxioJxBq4aOeMAnjtWsjMfzIOQpU0
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 214447
x-served-by: cache-lga21927-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 24139
vary: Accept-Encoding
content-length: 3837
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CAK80F3C77UBIBJRNSPG&lib=ttq
200 OK 1.4 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CAK80F3C77UBIBJRNSPG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3076)
Hash 36024b814173672a15230251ad33bb08
c4f54a570e33c1f8479d22f008c2f110800f1980
9bf4c0f8fd4cf6d574288a1c5b38b393df5a6309c4bf896cc088891bde4faa22
GET /i18n/pixel/events.js?sdkid=CAK80F3C77UBIBJRNSPG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230130090440D447237D464BFB5F67A7
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b87664fdda941490651c0a23cf13e9b7d18d69371c2ccc166f713f028bc403a3a06c1a932e1120bb4d82808e9ad3b76b3f0c0accd454b2610e80e84cac1801ea0b915fb6ac002a8a821781220b12ec111a637f74d98ed32ff6d2d4e69675d379
content-encoding: gzip
content-length: 1411
x-origin-response-time: 8,23.34.240.172
x-akamai-request-id: 15888609.791a5b4f
expires: Mon, 30 Jan 2023 09:04:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 09:04:40 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2L2W6Gxucm8uQr1UPzB3yh47Qk3; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-34-240-172.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=7, inner; dur=5
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
200 OK 70 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMQ.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash e470cdee4fb19533b3076cf5e6445ff0
3fa761e875d60e55f5464f0cee6207bca0d2cbed
e7fa855a1d974007175332f96be3ec95d6c6b94f7f4180dac64e4cf7d3d7115a
GET /i18n/pixel/static/main.MWE2YWY2YTgzMQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Cookie: _ttp=2L2W6Gxucm8uQr1UPzB3yh47Qk3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175829D91E25D7003EA9A803DC
x-tt-trace-host: 01f6175df718ab226765794aaab21df67154f0b53b7f693af896ad93db0deb0ef832d63bb31438f0c5e0aa4878e941bb88c0976593910f5ab417b5ca255605e18e5e0fd52686d843afbd593b8bd0d366fe4ffb20082da9c196e6db1f01a9ce8992
content-encoding: gzip
content-length: 70411
date: Mon, 30 Jan 2023 09:04:40 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 791a5cdf
X-Firefox-Spdy: h2
wapi.lipscore.com/initial_data/products/show?api_key=9e0525b72c86bd18af95b5f1&internal_id=service_review&widgets=srw_b_sm_s&translate_to_lang=no
200 OK 78 B URL HTTP/2 wapi.lipscore.com/initial_data/products/show?api_key=9e0525b72c86bd18af95b5f1&internal_id=service_review&widgets=srw_b_sm_s&translate_to_lang=no
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7859b0bc67d74a956795e3bd5682753d
265fcd6846a59a46b7ed08feaae90870d7065b8e
dc7eda7a62ddd4da23d4deb634ab8b7cc2da51a78e22147d78e0bfe9fc9a1261
GET /initial_data/products/show?api_key=9e0525b72c86bd18af95b5f1&internal_id=service_review&widgets=srw_b_sm_s&translate_to_lang=no HTTP/1.1
Host: wapi.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
content-type: application/json; charset=utf-8
x-request-id: 1066a534-9795-46dd-8af3-1f72e923cd65
x-runtime: 0.024617
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:40 GMT
age: 151271
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675069481.985211,VS0,VE13
vary: Origin
access-control-allow-origin: https://sweef.no
content-length: 78
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Cookie: _ttp=2L2W6Gxucm8uQr1UPzB3yh47Qk3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 791a5dce
X-Firefox-Spdy: h2
sweef.se/themes/sweef/assets/fonts/FuturaLT.woff2
200 OK 9.0 kB URL HTTP/2 sweef.se/themes/sweef/assets/fonts/FuturaLT.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9020, version 1.0\012- data
Hash 2afc6889243afd78bc7a1d7b27309068
f797a07d93a5b0a435b62c47aee6ef2197e526c0
0780a1309430211baefceaafc485141d4cde314c8e4636f3f97cabb3bd65ecaa
GET /themes/sweef/assets/fonts/FuturaLT.woff2 HTTP/1.1
Host: sweef.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Wed, 11 Mar 2020 08:54:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 09:04:41 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-length: 9043
content-type: font/woff2
X-Firefox-Spdy: h2
service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
200 OK 3.1 kB URL HTTP/2 service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (12734), with no line terminators
Hash 81342a0d0d4dad324c186adcc09689eb
d052791183cf7f800c59554a843eabf8857c7603
a8a6156b2cca3a55ee201ecea3bf49da4b1571ea541e4bb80ea3585a0d4bda43
GET /api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/client-settings2/?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
X-Client-Origin: https://sweef.no
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-encoding: gzip
content-language: en
content-length: 3064
content-type: application/json
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
server: nginx
vary: Accept, Accept-Language, Accept-Encoding
x-response-duration: 101
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Langharig-Fatolj_1599640049.jpg?fm=webp&width=1000
200 OK 42 kB URL HTTP/2 sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Langharig-Fatolj_1599640049.jpg?fm=webp&width=1000
IP
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x562, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f496eb3ed2962167130a7dce913d0851
00fd4c6b9ac6b82f464a0ac897eafaf6e6ebcbaf
089065ff22a516cdda73fd8111cdc99782f9a637d4b917246163b9f9280f6fac
GET /modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Langharig-Fatolj_1599640049.jpg?fm=webp&width=1000 HTTP/1.1
Host: sweef.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
content-type: image/webp
content-length: 41702
server: BunnyCDN-NO1-830
cdn-pullzone: 493972
cdn-uid: 3da33f3a-c652-4b2b-9ded-bf373cb70371
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 30 Jan 2023 09:04:40 GMT
x-bo-server: DE-187
x-downloadsize: 224686
x-bo-origindownloadtime: 97
x-bo-processingtime: 53
x-bo-compressionratio: 81.44%
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/30/2023 09:04:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b3b2c0bc3a3510fa3a1b73ce00ce876c
cdn-cache: MISS
X-Firefox-Spdy: h2
static.lipscore.com/assets/icons-3aeff2f7ea44a50d497dedb118e89bce.png
200 OK 30 kB URL HTTP/1.1 static.lipscore.com/assets/icons-3aeff2f7ea44a50d497dedb118e89bce.png
IP
File type PNG image data, 273 x 428, 8-bit/color RGBA, non-interlaced\012- data
Hash 15e584e0998a1023c395c32f1dc9db9d
b28c9e8e2187e58b67f2e261069efa43376137c1
ca3c0207dd0c324f591f68670045cb3c65a029be0b0c8e322cc044f983a65b15
GET /assets/icons-3aeff2f7ea44a50d497dedb118e89bce.png HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.lipscore.com/assets/lipscore-v1.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 30228
Connection: keep-alive
Date: Fri, 27 Jan 2023 10:09:39 GMT
Last-Modified: Fri, 27 Jan 2023 10:06:26 GMT
ETag: "15e584e0998a1023c395c32f1dc9db9d"
Cache-Control: public, max-age=31557600
Expires: Sat, 27 Jan 2024 16:06:24 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c51NYKE1_899vLDfaX51JFDx38WZWAb9Yg4Bm7D7Pz_xK-wWXGLXCw==
Age: 255303
fonts.gstatic.com/s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2
200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 19004, version 1.0\012- data
Hash be2a14878eb61d7c95d5970ff1912539
237450c08a36de2b7d3e4d20b74a062ca2fce816
1e235540dffb208599faa7434fad4050331fcd6916bf44fad58a5d1d65b8d360
GET /s/dmsans/v11/rP2Fp2ywxg089UriCZa4Hz-D.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sweef.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:06:27 GMT
expires: Sat, 27 Jan 2024 10:06:27 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:57:37 GMT
content-type: font/woff2
age: 255494
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.lipscore.com/assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff
200 OK 1.2 kB URL HTTP/1.1 static.lipscore.com/assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff
IP
File type Web Open Font Format, CFF, length 1192, version 1.0\012- data
Hash c6d2fba8756c3e43a3dbd5c708550121
691694201280898a21a535ff904712c0c8da4545
3db7852ef1e0fa9f2bbf21800b7a600ceece16e69f5781b0c205984c1ac460ee
GET /assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sweef.no
Connection: keep-alive
Referer: https://static.lipscore.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff
Content-Length: 1192
Connection: keep-alive
Date: Fri, 27 Jan 2023 10:13:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Last-Modified: Fri, 27 Jan 2023 10:08:47 GMT
ETag: "c6d2fba8756c3e43a3dbd5c708550121"
Cache-Control: public, max-age=31557600
Expires: Sat, 27 Jan 2024 16:08:46 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7sxbeLeIF3xEd9_fEVDvOxQ6uzaJ3GOtASXMMEG7F6NPI5K55qPeqw==
Age: 255087
sweef.se/themes/sweef/assets/fonts/FuturaLT-Heavy.woff2
200 OK 8.9 kB URL HTTP/2 sweef.se/themes/sweef/assets/fonts/FuturaLT-Heavy.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 8904, version 1.0\012- data
Hash bdba2f227e30bfb934e3298898e0635c
c9e705feea72214078d1f06b19152cf662d1238c
7a7b5d67a3c2614423fbc67f38c874011da8442aafa2caf72d9e2ddb6db3308a
GET /themes/sweef/assets/fonts/FuturaLT-Heavy.woff2 HTTP/1.1
Host: sweef.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Wed, 11 Mar 2020 08:54:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 09:04:41 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-length: 8927
content-type: font/woff2
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1018
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Cookie: _ttp=2L2W6Gxucm8uQr1UPzB3yh47Qk3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230130090441CC399F8A897A694710D8
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a7cf07f79536b9bd03445ebfdd07703b71f52625361784eb19bf37b803202f15233711575dcc6ca9d5445f474b9d9817745f5776c37e0d162833f2c443f5f0a0e
expires: Mon, 30 Jan 2023 09:04:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=17, cdn-cache; desc=MISS, edge; dur=4, origin; dur=114
x-origin-response-time: 114,23.36.79.13
x-akamai-request-id: 791a5e0a
X-Firefox-Spdy: h2
sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Kortharig-Fotpall_1599640049.jpg?fm=webp&width=1000
200 OK 24 kB URL HTTP/2 sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Kortharig-Fotpall_1599640049.jpg?fm=webp&width=1000
IP
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x562, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a488ba0305370ae67ac870b796c5e95
d0518024afddbf0715756e02ea5afb4e0e7d569a
18db0ef9744b1531cdbd5cffdf3c823c4cdc90962982358717b1b5546fe5209d
GET /modules/pw_imagemanager/images/tagged/9/Wild-Gray-Fladdermusen-Kortharig-Fotpall_1599640049.jpg?fm=webp&width=1000 HTTP/1.1
Host: sweef.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
content-type: image/webp
content-length: 23536
server: BunnyCDN-NO1-830
cdn-pullzone: 493972
cdn-uid: 3da33f3a-c652-4b2b-9ded-bf373cb70371
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 30 Jan 2023 09:04:40 GMT
x-bo-server: DE-139
x-downloadsize: 144276
x-bo-origindownloadtime: 140
x-bo-processingtime: 34
x-bo-compressionratio: 83.69%
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/30/2023 09:04:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 55600aa08dbc6c12ecde0785ce2c1caa
cdn-cache: MISS
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 997
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Cookie: _ttp=2L2W6Gxucm8uQr1UPzB3yh47Qk3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230130090441E11163CE05816D5BF0E9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b9bb176d45c32855e78e06e921aa21324ebffc2d7f6a5976c5773556671f81b4b7434680d4651a3acfa382f36ed6600ecec5a5be677a6841432691ada520b31d245dae7fd62cee10365c798599a472a20b8c5767823b43f268d29368396aa4da
x-origin-response-time: 20,66.198.8.123
x-akamai-request-id: 595f6032.791a5e12
expires: Mon, 30 Jan 2023 09:04:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a66-198-8-123.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=122, origin; dur=20, inner; dur=17
x-parent-response-time: 138,23.36.79.13
X-Firefox-Spdy: h2
telemetrics.klaviyo.com/v1/metric
204 No Content 0 B URL HTTP/2 telemetrics.klaviyo.com/v1/metric
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/metric HTTP/1.1
Host: telemetrics.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1025
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 09:04:41 GMT
x-amzn-requestid: 8dbc7d80-d68d-4a22-a3c6-fed8521396bb
access-control-allow-origin: *
x-amz-apigw-id: fjI2cHxsoAMFp-g=
x-amzn-trace-id: Root=1-63d78829-34d45341362bfb291fa7a899;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qVxctgqOdNpZiehWL6lWMToaTRcBQX-P-biMNcEWZS52yGw9j0tOMw==
X-Firefox-Spdy: h2
service.giosg.com/static/664.f900ebc37a6106ecbf24.js
200 OK 2.3 kB URL HTTP/2 service.giosg.com/static/664.f900ebc37a6106ecbf24.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6807), with no line terminators
Hash d1b597b21d3be9c7f32027ad1b7a6580
51f4e4664ee895c7163361c25779992eb5ee5939
6e4a19802787a589e2d9dadba5df9b1e9e91f3baac415423f4ff653308a3b7e0
GET /static/664.f900ebc37a6106ecbf24.js HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=315360000, public
content-encoding: gzip
content-length: 2314
content-type: application/javascript
date: Mon, 30 Jan 2023 09:04:41 GMT
etag: "63d29fab-90a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 26 Jan 2023 15:43:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022
200 OK 510 B URL HTTP/2 service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (842), with no line terminators
Hash d915587ecb09819d4564bbf3c3182b3d
00808ba848f5db81b5a3efecdceef5b24cc649e8
979932be17ced746c2c898b7269d0a82089f2b1402adca53d1a74c2d390f71d3
GET /api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022 HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
content-encoding: gzip
content-language: en
content-length: 510
content-type: application/json
date: Mon, 30 Jan 2023 09:04:41 GMT
server: nginx
vary: Accept, Accept-Language, Cookie, Accept-Encoding
x-response-duration: 24
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Brown-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000
200 OK 22 kB URL HTTP/2 sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Brown-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000
IP
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x562, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9f3c1a56eee1466e86a91cedf8e8df9a
ca869699ee81a4bdd4ee8fa25813ab43a67e480a
f12bfdaa4c0b2b214fbf68ac34dea657f3962c2d94d7941952ccef102b49f0eb
GET /modules/pw_imagemanager/images/tagged/9/Wild-Brown-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000 HTTP/1.1
Host: sweef.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
content-type: image/webp
content-length: 22224
server: BunnyCDN-NO1-830
cdn-pullzone: 493972
cdn-uid: 3da33f3a-c652-4b2b-9ded-bf373cb70371
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 30 Jan 2023 09:04:41 GMT
x-bo-server: DE-95
x-downloadsize: 142575
x-bo-origindownloadtime: 143
x-bo-processingtime: 31
x-bo-compressionratio: 84.41%
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/30/2023 09:04:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dd83b366bcfa5278a302724e2659029e
cdn-cache: MISS
X-Firefox-Spdy: h2
sweef.no/img/favicon.ico?1635405935
200 OK 826 B URL HTTP/2 sweef.no/img/favicon.ico?1635405935
IP
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash c83b9a8ab564d14e2fc3c3a6ab396c96
c56f4fd8e8d7d2fc0fb41b00066b9b6dd27e59f8
9b1bcaada76180641546157aa18bcf234a3d51f3719a4ddb76caaa6a65225ee4
GET /img/favicon.ico?1635405935 HTTP/1.1
Host: sweef.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/lenestoler/172-227-fladdermusen.html
Cookie: PHPSESSID=lhgsdajopv560ch1t935lho5oj; PrestaShop-454ccff2d55568f55b036e769cfd005b=def502004afaa19e217df332e5568c4d104abd08be68e3527cbcfd5d920a0a0cfbe3b217af2acac66e3647fc22739b9b724650b0e161672832794fbd3df3666f2818c7aa4566d2d5a4dd1de2348af7a4f888c72f5638d77029146da7bbf4f6fc61b1af6243e03505a91a5c2c3f7d9f7772f8e096dba7789873993093388378e37ace9011a120cb79aacc6a7d7550ea44c4fa3a8b3a09b1a0373b8cd6fefbb11fa9e6314db4f7d64bac148b9e264bdf3c9232752bcd7138bbefd99097add11f3e6273f82a43f1268ddce089498b579eaca10ba661d826ef6e5fef386dd49c9a5ebcf168743b; __kla_id=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; pageviewCount=1; _ga_VK4RGEYD1J=GS1.1.1675069492.1.0.1675069492.60.0.0; _ga=GA1.1.1185919617.1675069492; _tt_enable_cookie=1; _ttp=8OJqFkAYR1IPJdh_7wr3P-7ZFcP; giosg_reporting_pageview_track_seq_num=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:41 GMT
server: Apache/2.4.37 (centos) OpenSSL/1.1.1c
last-modified: Thu, 28 Oct 2021 07:25:35 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 09:04:41 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 826
content-type: image/vnd.microsoft.icon
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 07:46:59 GMT
expires: Mon, 30 Jan 2023 09:46:59 GMT
cache-control: public, max-age=7200
age: 4662
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6525
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Last-Modified: Mon, 30 Jan 2023 07:15:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1&z=2086157241
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1&z=2086157241
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1&z=2086157241 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: rYNSFazybeP7hAJM1sRv5kF0DrzN1jyqFbkCT8r02ObX6dYbrIhzkvpXAyX0CCMLX/78GNjTji9g1sVE3rQoSg==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 09:04:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
200 OK 1.7 kB IP
File type gzip compressed data, max compression\012- data
Hash 979dffb34a856e03df71a4b649d1c51a
100bac0f1cecd622ed54e4fa67729dff22c4682a
7c841d1fd312da5b6912723606cbaed0aee0de21e7288edcb17ba8ec24ad7a79
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6525
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Last-Modified: Mon, 30 Jan 2023 07:15:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
stats.g.doubleclick.net/g/collect?v=2&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VK4RGEYD1J&cid=1185919617.1675069492>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://sweef.no
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&gjid=376743981&_gid=713209088.1675069493&_u=YCDAgEABAAAAAEAAI~&z=893909644
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&gjid=376743981&_gid=713209088.1675069493&_u=YCDAgEABAAAAAEAAI~&z=893909644
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&gjid=376743981&_gid=713209088.1675069493&_u=YCDAgEABAAAAAEAAI~&z=893909644 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sweef.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/lib/main.f6304d83.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.f6304d83.js
IP
File type ASCII text, with very long lines (56364), with no line terminators
Hash fe9b810e040cd8cd5323a13c712440ca
ffc29540d5d7d231bb6500449752545fcf81fb74
a1da4f552aa59996a83ec493589977c6302d29653981188528298d6db6866890
GET /ct/lib/main.f6304d83.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fe9b810e040cd8cd5323a13c712440ca"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19456
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/visitor-settings?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
200 OK 665 B URL HTTP/2 service.giosg.com/api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/visitor-settings?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (1067), with no line terminators
Hash 157d299326f09b7d745c4f8d14db8997
57c5d6914b7a1046380eb94155299908d9c47337
86a85514c4bb4bd3577f9cf4656fab59bef766c8e3f852e95683ee1706c123c8
GET /api/v5/orgs/e6f71308-d397-11e9-84f3-0242ac110012/visitor-settings?url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
content-encoding: gzip
content-language: en
content-length: 665
content-type: application/json
date: Mon, 30 Jan 2023 09:04:41 GMT
server: nginx
vary: Accept, Accept-Language, Accept-Encoding
x-response-duration: 33
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&_u=YCDAgEABAAAAAEAAI~&z=1956283409
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&_u=YCDAgEABAAAAAEAAI~&z=1956283409
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-26085139-4&cid=1185919617.1675069492&jid=465270919&_u=YCDAgEABAAAAAEAAI~&z=1956283409 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 111 kB IP
File type gzip compressed data, from Unix\012- data
Size 111 kB (110701 bytes)
Hash 1402de94c32105f13ba8efd78010b600
eb41c7258a478a404dffaf12a56ad6c1fb3d81bc
e1d44ff045dc2d97ebde1e72ccd45e6463eb7c4188d1997bd61db68064d558cd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 09:04:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
service.giosg.com/bar/visitor.1afeb3721644ec50493f.js
200 OK 372 B URL HTTP/2 service.giosg.com/bar/visitor.1afeb3721644ec50493f.js
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /bar/visitor.1afeb3721644ec50493f.js HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 30 Jan 2023 09:04:41 GMT
content-type: application/javascript
x-amz-id-2: pQBJLbLq1YI6uk9RmhSE8zuPjJZ2aTOGTI+9FKEuvqBUxUVizRgQNU3bv8Fz/znjxOt8qR2B8RM=
x-amz-request-id: C4W4ZBRF5DQPRD7G
last-modified: Thu, 26 Jan 2023 15:37:25 GMT
etag: W/"72dc237bf9b3c9bb5d26927a2b60829d"
cache-control: no-cache,max-age=0
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613225060169&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675069493062
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613225060169&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675069493062
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613225060169&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675069493062 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 3278464529737858
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
service.giosg.com/credentials/5636/?cid=undefined&cookies_allowed=true&sgid=undefined&url=https%3A%2F%2Fservice.giosg.com
200 OK 2.1 kB URL HTTP/2 service.giosg.com/credentials/5636/?cid=undefined&cookies_allowed=true&sgid=undefined&url=https%3A%2F%2Fservice.giosg.com
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1678)
Hash 33bee96902e8d1561c7655e7e3078176
a68effbe769555aace3135bb5de4e07db7da1feb
795119c2a8489154c270118e0afcc5e2086fb2ca726ca3a2689cd4003d2fa1e0
GET /credentials/5636/?cid=undefined&cookies_allowed=true&sgid=undefined&url=https%3A%2F%2Fservice.giosg.com HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-encoding: gzip
content-language: en
content-length: 2054
content-type: text/html; charset=utf-8
date: Mon, 30 Jan 2023 09:04:41 GMT
pragma: no-cache
server: nginx
set-cookie: sgid=pncy4fiyeyxgtfduviaakaacontqeebb4ir5vid5chwypxicikwbeabbbq; expires=Wed, 29-Jan-2025 09:04:41 GMT; Max-Age=63072000; Path=/; SameSite=None; Secure
vary: Accept-Language, Accept-Encoding
x-response-duration: 7
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493061&dep=5%2CEVENT_TAGS_ABSENT
200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493061&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493061&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqRmlaak0wT0dFdFpXRTBNeTAwTVRsbUxXRmpZMll0TlRabFpqRTFaV1UxTURSaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://sweef.no
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1333265223968487
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cdn: fastly
content-length: 372
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=731265600352314&ev=PageView&dl=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1675069493156&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22337720013956097%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22SEK%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22825023384979307%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1675069493155.57896946&it=1675069492899&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=731265600352314&ev=PageView&dl=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1675069493156&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22337720013956097%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22SEK%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22825023384979307%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1675069493155.57896946&it=1675069492899&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=731265600352314&ev=PageView&dl=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1675069493156&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22337720013956097%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22SEK%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22825023384979307%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1675069493155.57896946&it=1675069492899&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 30 Jan 2023 09:04:41 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 9350025710488703
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cdn: fastly
content-length: 323
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493254&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU1ETmxZakEzWWpNdFpERmtOeTAwTURFNExXSXlNelF0T1dJMFptRmhZakF3TXpabA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493254&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU1ETmxZakEzWWpNdFpERmtOeTAwTURFNExXSXlNelF0T1dJMFptRmhZakF3TXpabA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613225060169&cb=1675069493254&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU1ETmxZakEzWWpNdFpERmtOeTAwTURFNExXSXlNelF0T1dJMFptRmhZakF3TXpabA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html%23%2Ftyp-fotpall%2Ffarg-langharig_wild_grey%3Freferer%3Dkelkoo%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DCuero%2B-%2BFladdermusen%2B-%2BFotpall%2BL%25C3%25A5ngh%25C3%25A5rig%22%2C%22ref%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
set-cookie: _pinterest_ct_ua="TWc9PSZvVVB3dThiL3pqQm9aUUxSOHhsTWtZWGNJSWZFU1k1VFFTUWFoNy94TFFZTENpMlpndFJqV25hbkg0MnBrOEdrVmZlM0ZkUHovK05ZcWFtcEhUVzRWOFlDamxCL1ZCWjhjVllhalY2bzVKOD0mWEZUWkY4NVhaZDNPdzNHYllVbEFEbHNiOGs4PQ=="; Expires=Tue, 30 Jan 2024 09:04:41 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1821489369097565
date: Mon, 30 Jan 2023 09:04:41 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10822865107/?random=1675069493269&cv=11&fst=1675069493269&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Cuero.%20Mindre%20lenestol%2Ffotskammel%20i%20saueskinn.%20Lenestol%20i%20saueskinn%20%7C%20FLADDERMUSEN%20%7C%20SWEEF%20%7C&data=event%3Dview_item%3Becomm_prodid%3D172%3Becomm_pagetype%3Dproduct%3Bgoogle_business_vertical%3Dretail%3Bid%3D172&rfmt=3&fmt=4
200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10822865107/?random=1675069493269&cv=11&fst=1675069493269&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Cuero.%20Mindre%20lenestol%2Ffotskammel%20i%20saueskinn.%20Lenestol%20i%20saueskinn%20%7C%20FLADDERMUSEN%20%7C%20SWEEF%20%7C&data=event%3Dview_item%3Becomm_prodid%3D172%3Becomm_pagetype%3Dproduct%3Bgoogle_business_vertical%3Dretail%3Bid%3D172&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2393), with no line terminators
Hash 59554bd356fbad4d68db8edd2c2f3843
8e1b6e4cad8632fa8d3f3f40857189fdbee5aca2
5e60e0e4446468bdf020333864e0e4fb5beeae597c8568960669e08770aaa877
GET /pagead/viewthroughconversion/10822865107/?random=1675069493269&cv=11&fst=1675069493269&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsweef.no%2Flenestoler%2F172-227-fladdermusen.html&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Cuero.%20Mindre%20lenestol%2Ffotskammel%20i%20saueskinn.%20Lenestol%20i%20saueskinn%20%7C%20FLADDERMUSEN%20%7C%20SWEEF%20%7C&data=event%3Dview_item%3Becomm_prodid%3D172%3Becomm_pagetype%3Dproduct%3Bgoogle_business_vertical%3Dretail%3Bid%3D172&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 09:04:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1033
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 09:19:42 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
service.giosg.com/api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/
200 OK 0 B URL HTTP/2 service.giosg.com/api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/ HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-giosg-clientversion
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: x-requested-with, content-type, accept, origin, authorization, x-giosg-clientversion, x-client-origin, X-GIOSG-SCRIPT-VERSION
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3600
content-type: text/html; charset=utf-8
date: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
content-length: 0
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
messagerouter.giosg.com/websocket?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs
101 Switching Protocols 0 B URL HTTP/1.1 messagerouter.giosg.com/websocket?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /websocket?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs HTTP/1.1
Host: messagerouter.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://service.giosg.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Bt6PAckIwjUFycKVS3uCJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Mon, 30 Jan 2023 09:04:42 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: v1It54gvfjdQluJwQXqzml03PEM=
service.giosg.com/api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/
200 OK 149 B URL HTTP/2 service.giosg.com/api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 7b3b792371624e8b126a6464b1e317ca
831c22c65b867abe53007a41c9cf7e6be0811c88
114e282aa00183245fb15384099a753143a4ec041c3b1f316fb5ea722d934cc5
GET /api/visitor-data/4ywneuifyooopkynciaaop6wv4w4hz3ie5gfm3hh7s3cjdqm/13978/ HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
Content-Type: application/json
X-GIOSG-ClientVersion: 412c1f67b8569b82cfbf862a9f53f1cc
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
cache-control: no-cache
content-language: en
content-length: 149
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language, Cookie
x-response-duration: 13
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022/online_users
200 OK 553 B URL HTTP/2 service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022/online_users
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (1146), with no line terminators
Hash 7e492bfaeb71e5e7e95517cc84ef5b7f
cdaeeb5b4b4f89c5d2132fd3014a334ed81bc8e8
14b88f3f7405e4c2d663c4fb790f17e186b718eb5f507d1f7bed337963c353c4
GET /api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022/online_users HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Cookie: sgid=pncy4fiyeyxgtfduviaakaacontqeebb4ir5vid5chwypxicikwbeabbbq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
cache-control: max-age=0, no-cache, no-store, must-revalidate, private
content-encoding: gzip
content-language: en
content-length: 553
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
expires: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language, Accept-Encoding
x-response-duration: 17
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/visitors/3fd6af2dc3e768274c566ce7fcb6248e/chats?ordering=-created_at
200 OK 42 B URL HTTP/2 service.giosg.com/api/v5/public/visitors/3fd6af2dc3e768274c566ce7fcb6248e/chats?ordering=-created_at
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash f91beff7eb206d2fb44cee7464c0f1e3
1bac39944978133dd07707bd8bff67168d6ddf70
0275e5323da6fca5a40c4e3b64f9bcb36ea3b76883040c28ba2328afd817a58a
GET /api/v5/public/visitors/3fd6af2dc3e768274c566ce7fcb6248e/chats?ordering=-created_at HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Cookie: sgid=pncy4fiyeyxgtfduviaakaacontqeebb4ir5vid5chwypxicikwbeabbbq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
cache-control: max-age=0, no-cache, no-store, must-revalidate, private
content-language: en
content-length: 42
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
expires: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language
x-response-duration: 35
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022
200 OK 1.5 kB URL HTTP/2 service.giosg.com/api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (842)
Hash 2b3875f2604b46f71ab987cfd7cf9568
3c1a0280fe26552ad53590bda3bae0c10b92f180
80b4c6733ffe1693e915e0f21ff94fdb647c5f1c8a6b30f749173b0640fb0742
GET /api/v5/public/orgs/e6f71308-d397-11e9-84f3-0242ac110012/rooms/4dc7ea2c-1f7b-11ec-957a-0242ac120022 HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJqdGkiOiIyMWUyNzU3ZS1hMDdkLTExZWQtODdkZC0wMjQyYWMxMjAwMjEiLCJpYXQiOjE2NzUwNjk0ODEuODE5NTYyMiwiZXhwIjoxNjc1MDk4MjgxLjgxOTI3MDEsInZlcnNpb24iOjEsImlzcyI6Imh0dHBzOi8vc2VydmljZS5naW9zZy5jb20vY3JlZGVudGlhbHMvNTYzNi8_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.ljCQSyxUfSU5D4wdaLH66sq5Gtu1FrERsALWJESFGVs
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
Cookie: sgid=pncy4fiyeyxgtfduviaakaacontqeebb4ir5vid5chwypxicikwbeabbbq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
allow: GET, HEAD, OPTIONS
cache-control: max-age=0, no-cache, no-store, must-revalidate, private
content-encoding: gzip
content-language: en
content-length: 510
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
expires: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language, Accept-Encoding
x-response-duration: 30
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/trace/
201 Created 17 B URL HTTP/2 service.giosg.com/api/v5/public/trace/
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash ace7b5222a61cbcc2c0abc1336b5f880
945600b7b270629388898a63ad063c0aa3cb3f99
a1a34cb6f8e4bd807eb652f7819aa48120dc12e6c390223a622e5f39f59970f6
POST /api/v5/public/trace/ HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
Content-Type: text/plain; charset=UTF-8
Origin: https://sweef.no
Content-Length: 1099
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
access-control-allow-origin: *
allow: GET, POST, HEAD, OPTIONS
content-language: en
content-length: 17
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language
x-response-duration: 21
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
service.giosg.com/api/v5/public/trace/
201 Created 17 B URL HTTP/2 service.giosg.com/api/v5/public/trace/
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 46735e366de4ddebcb648e3bbdd9401f
0504278899c27a870da173e9a04f5c1d8999e42a
61fc7904e3c27951c1d6853b9116b6ebad2c5d282602e0eb6ba1792770e4eae6
POST /api/v5/public/trace/ HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
Content-Type: text/plain; charset=UTF-8
Origin: https://sweef.no
Content-Length: 2136
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
access-control-allow-origin: *
allow: GET, POST, HEAD, OPTIONS
content-language: en
content-length: 17
content-type: application/json
date: Mon, 30 Jan 2023 09:04:42 GMT
server: nginx
vary: Accept, Accept-Language
x-response-duration: 165
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
globalcdn.interactiondesigner.giosg.com/player.js
200 OK 57 kB URL HTTP/2 globalcdn.interactiondesigner.giosg.com/player.js
IP
File type Unicode text, UTF-8 text, with very long lines (63256)
Hash 8f01de4d0842eab085c3e3fea5fd905e
ff2392dd4bc61780e06807807522e987c99daede
e6fb2b85681889c31744eba4334cd90160f5b6ebdad4867fdf0c4cb39f9527a2
GET /player.js HTTP/1.1
Host: globalcdn.interactiondesigner.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-headers: Content-Type,Authorization,x-requested-with
access-control-allow-methods: GET,PUT,POST,DELETE
access-control-allow-origin: *
content-encoding: gzip
last-modified: Thu, 12 Jan 2023 15:13:43 GMT
date: Mon, 30 Jan 2023 09:04:42 GMT
cache-control: public, max-age=60, max-stale=10, immutable, stale-if-revalidate=10, stale-if-error=10
etag: W/"2c71b-185a68b4458"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3i6chvISMbidIwM7OimM--l9uIQtFrjig5atUkBEGKR4jG0mr2ggRQ==
age: 15
X-Firefox-Spdy: h2
service.giosg.com/static/giosgTCApi.build.js
200 OK 11 kB URL HTTP/2 service.giosg.com/static/giosgTCApi.build.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (34453), with no line terminators
Hash 5fb62485681ee32004312b95b204142c
3c84782fda1fd27db2de6f8bbe91eeba21b59ad8
bcebb4e8d1b8ffbf61cd4ba09db42942e10403b54d1792dd440a7d709a3a339b
GET /static/giosgTCApi.build.js HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Cookie: sgid=pncy4fiyeyxgtfduviaakaacontqeebb4ir5vid5chwypxicikwbeabbbq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=315360000, public
content-encoding: gzip
content-length: 11392
content-type: application/javascript
date: Mon, 30 Jan 2023 09:04:42 GMT
etag: "63d29fab-2c80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 26 Jan 2023 15:43:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Black-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000
200 OK 32 kB URL HTTP/2 sweef.b-cdn.net/modules/pw_imagemanager/images/tagged/9/Wild-Black-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000
IP
ASN #34989 ServeTheWorld AS
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x562, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 699fcd3ad8e183e9e38bc906fbf0450d
5d950b1c887b0651b0e75e0178400b5ba1d88774
cbbde42e7a81c3159eda3f4c73cc4b8271a5ddcfe27ace33fb1b814544110008
GET /modules/pw_imagemanager/images/tagged/9/Wild-Black-Fladdermusen-Langharig-Fotpall_1599640048.jpg?fm=webp&width=1000 HTTP/1.1
Host: sweef.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 09:04:42 GMT
content-type: image/webp
content-length: 31490
server: BunnyCDN-NO1-830
cdn-pullzone: 493972
cdn-uid: 3da33f3a-c652-4b2b-9ded-bf373cb70371
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Mon, 30 Jan 2023 09:04:42 GMT
x-bo-server: DE-187
x-downloadsize: 162985
x-bo-origindownloadtime: 97
x-bo-processingtime: 49
x-bo-compressionratio: 80.68%
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/30/2023 09:04:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c8ac0e9488ecbc7a22655fb50a0997de
cdn-cache: MISS
X-Firefox-Spdy: h2
cb7d882b-8ea7-4c26-830c-a628a78feb99.interactions.giosgusercontent.com/live.json
200 OK 1.8 kB URL HTTP/2 cb7d882b-8ea7-4c26-830c-a628a78feb99.interactions.giosgusercontent.com/live.json
IP
File type Unicode text, UTF-8 text, with very long lines (5306), with no line terminators
Hash 346e6a695109aa83a2559b5b6d91d10e
24ac028b88411e1795140abaa4430ead10c009f2
3705d80f90bc6edd7bf47a0c2541b197cb59c4a4c8a0644329905ec8c2b2b909
GET /live.json HTTP/1.1
Host: cb7d882b-8ea7-4c26-830c-a628a78feb99.interactions.giosgusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 1785
access-control-allow-headers: Content-Type,Authorization,x-requested-with
access-control-allow-methods: GET,PUT,POST,DELETE
access-control-allow-origin: *
content-encoding: gzip
cache-control: public, max-age=30
date: Mon, 30 Jan 2023 09:04:42 GMT
etag: W/"14be-9HoDYYF3eLHl0n/iFSBjTntJSpg"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RY1du5KQNvULjXzKhVr9EDSgcMC4_i6_U6RfYkPjlazlgOu25AfnNw==
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHTWEBlw.woff2
200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHTWEBlw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12128, version 1.0\012- data
Hash 1479bbf994b09bcdff9a6a9aa55875c9
db57d4a983ec2420ceaadf4c2bb097c5c6f0f26c
e80b4d758a716cbb24de088d427b774dee01a93831a5537c1d68087365dc5aa6
GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHTWEBlw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:52:09 GMT
expires: Sat, 27 Jan 2024 09:52:09 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:54:13 GMT
content-type: font/woff2
age: 256353
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.giosg.com/events/v2/store/external
201 Created 2 B URL HTTP/2 api.giosg.com/events/v2/store/external
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /events/v2/store/external HTTP/1.1
Host: api.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 814
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
server: openresty
date: Mon, 30 Jan 2023 09:04:42 GMT
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://sweef.no
allow: POST, OPTIONS
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
X-Firefox-Spdy: h2
api.giosg.com/events/v2/store/external
200 OK 2 B URL HTTP/2 api.giosg.com/events/v2/store/external
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
OPTIONS /events/v2/store/external HTTP/1.1
Host: api.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 09:04:42 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-origin: https://sweef.no
access-control-allow-methods: POST
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&family=Damion&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&family=Damion&display=swap
IP
GET /css2?family=DM+Sans:ital,wght@0,400;0,700;1,400;1,700&family=Damion&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 09:04:39 GMT
date: Mon, 30 Jan 2023 09:04:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.lipscore.com/assets/no/lipscore-v1.js
200 OK 0 B URL HTTP/1.1 static.lipscore.com/assets/no/lipscore-v1.js
IP
GET /assets/no/lipscore-v1.js HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 79523
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 10:08:22 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 29 Jan 2023 10:09:38 GMT
ETag: "ec6cbc4c1157b89a113ee382e870e6d7"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EefHyC-7kM_eIN3ZvtT6xKkLI7j21lx0ExhY9lHp361LvSz5RYZImA==
Age: 82502
static.klaviyo.com/onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1
200 OK 0 B URL HTTP/2 static.klaviyo.com/onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1
IP
GET /onsite/js/runtime.81f6cc401344ed6c92c2.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZHoe1JKI1Rph3iOf4IQhZp16xxgfZaMMfW8KEIP2txI5AOHYJ6NfXRv/lkoA3cPNyKoaq1CVWPw=
x-amz-request-id: V04X7QK3GHYB10N1
last-modified: Tue, 24 Jan 2023 18:51:15 GMT
etag: "b48a12053d908bc286759bb17690a56b"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: mm.IBp1r3HZuPGxv_asbIgsC7t4Otydh
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 30 Jan 2023 09:04:39 GMT
age: 214445
x-served-by: cache-lga21938-LGA, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 98053
vary: Accept-Encoding
content-length: 8050
X-Firefox-Spdy: h2
app.vividworks.com/embed/vividworks-frontend-embed.es.js
200 OK 0 B URL HTTP/2 app.vividworks.com/embed/vividworks-frontend-embed.es.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /embed/vividworks-frontend-embed.es.js HTTP/1.1
Host: app.vividworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sweef.no
Connection: keep-alive
Referer: https://sweef.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: must-revalidate, max-age=10
content-type: application/javascript
content-encoding: gzip
etag: 2jmj7l5rSw0yVb/vlWAYkK/YBwk=
vary: Accept-Encoding,Accept-Encoding
set-cookie: ARRAffinity=59bde058cb50407f40dc79548c31b6251f9b4337972a3c7793a08f0a0075a7ef;Path=/;HttpOnly;Secure;Domain=plume-app-pl-production.azurewebsites.net
ARRAffinitySameSite=59bde058cb50407f40dc79548c31b6251f9b4337972a3c7793a08f0a0075a7ef;Path=/;HttpOnly;SameSite=None;Secure;Domain=plume-app-pl-production.azurewebsites.net
access-control-allow-origin: *
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0J4jXYwAAAABONKsTty5fSpvjLTMkezwBQ1BIMzBFREdFMDQxNQBlZTc5N2UwOS1kNGJhLTRmYjgtOWYyYi04MjZhNmJhNzk0Yzc=
date: Mon, 30 Jan 2023 09:04:39 GMT
X-Firefox-Spdy: h2
service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
200 OK 0 B URL HTTP/2 service.giosg.com/bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined
IP
ASN #24940 Hetzner Online GmbH
GET /bar/visitor/chat?org=e6f71308-d397-11e9-84f3-0242ac110012&c=5636&url=https%253A%252F%252Fsweef.no%252Flenestoler%252F172-227-fladdermusen.html%2523%252Ftyp-fotpall%252Ffarg-langharig_wild_grey%253Freferer%253Dkelkoo%2526utm_source%253Dkelkoono%2526utm_medium%253Dcpc%2526utm_campaign%253Dkelkooclick%2526utm_term%253DCuero%252B-%252BFladdermusen%252B-%252BFotpall%252BL%2525C3%2525A5ngh%2525C3%2525A5rig&cid=undefined&sgid=undefined HTTP/1.1
Host: service.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sweef.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Mon, 30 Jan 2023 09:04:41 GMT
content-type: text/html; charset=utf-8
x-amz-id-2: cKKKWa5NPuIIXb2w/3uaXi8wawt2ZySKsLgatkMS6etp0HoHVSqIMTmBGnw7Dv9t4CH/V+EQdMY=
x-amz-request-id: C4WDVAQA2W2NT4NB
last-modified: Thu, 26 Jan 2023 15:37:25 GMT
etag: W/"e358ae972aa5704a5792c90bcaced90a"
cache-control: no-cache,max-age=0
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15768000
p3p: CP=Giosg does not have a P3P policy. Check: https://service.giosg.com/privacy_policy/
X-Firefox-Spdy: h2
api.giosg.com/events/v2/store/external
200 OK 0 B URL HTTP/2 api.giosg.com/events/v2/store/external
IP
ASN #24940 Hetzner Online GmbH
OPTIONS /events/v2/store/external HTTP/1.1
Host: api.giosg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://sweef.no/
Origin: https://sweef.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Mon, 30 Jan 2023 09:04:42 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-origin: https://sweef.no
access-control-allow-methods: POST
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
207.244.67.216
178.63.219.113
157.240.205.11
95.211.116.26
194.242.11.186
31.13.72.36
93.184.220.29
104.18.32.68