Report - applesoftupdate.com/

Report Overview

Submitted URL
applesoftupdate.com/
IP
216.245.213.77
ASN
#46475 LIMESTONENETWORKS
Submitted
2022-11-27 09:40:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
lookandfind.me	35702	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	2.0 kB	5.9.110.29
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	114 kB	23.36.76.186
pixel.advertising.com	337	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	893 B	3.126.56.137
rsms.me	102779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	1.1 kB	172.67.223.193
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	73 kB	142.250.74.168
ups.analytics.yahoo.com	287	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	1.0 kB	3.126.56.137
synchroscript.deliveryengine.adswizz.com	3575	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	395 B	54.76.106.23
applesoftupdate.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.6 kB	216.245.213.77
dipaka-ead.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.9 kB	3.208.247.235
assets.findify.io	55770	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	33 kB	143.204.55.105
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	800 B	53 kB	151.101.85.229
api.kelkoogroup.net	468795	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	34 kB	143.204.55.124
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.7 kB	104.18.32.68
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	994 B	2.0 kB	216.58.207.194
clever-redirect.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	527 B	885 B	78.46.197.88
gtm.adt313.net	68035	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	12 kB	54.230.111.106
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.fernerjacobsen.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	28 kB	1.9 MB	23.36.77.11
sync.search.spotxchange.com	523	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	860 B	1.2 kB	185.94.180.125
usermatch.targeting.unrulymedia.com	3135	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	249 B	213.19.147.44
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	467 B	357 B	23.36.76.186
status.geotrust.com	3662	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	343 B	797 B	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	672 B	142.250.74.174
cdn.polyfill.io	2365	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	753 B	680 B	151.101.85.26
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	520 B	694 B	142.250.74.164
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.77.32
api.yadore.com	591567	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	780 B	462 B	88.99.112.2
dd.kelkoogroup.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	409 B	44 kB	54.230.111.104
consentcdn.cookiebot.com	5676	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	497 B	873 B	104.110.3.72
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	5.0 kB	93.184.220.29
no-go.kelkoogroup.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	2.1 kB	95.211.116.27
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	7.0 kB	142.250.74.35
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	519 B	694 B	142.250.74.3
sync.userreport.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	585 B	143.204.55.64
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	143.204.42.158
zizr.id	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	773 B	1.1 kB	13.107.227.67
consent.cookiebot.com	4972	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	892 B	90 kB	23.72.139.51
api-v3.findify.io	53134	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	34 kB	54.230.111.2
dsum.casalemedia.com	1228	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	856 B	1.9 kB	172.64.154.237
storeapi.jetshop.io	627032	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	44 kB	20.103.29.134
tb.de17a.com	529091	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	2.6 kB	213.155.156.188
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
ad.360yield.com	657	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	864 B	859 B	18.193.206.58
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.230.192
image2.pubmatic.com	873	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	457 B	580 B	185.64.190.80
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	615 B	716 B	142.251.1.155
sync.1rx.io	528	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	773 B	807 B	213.19.147.44
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
status.thawte.com	5123	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
fernerjacobsen.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	562 B	259 B	23.36.77.11
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	794 B	12 kB	104.16.125.175

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	applesoftupdate.com	Sinkholed
2022-11-27	medium	applesoftupdate.com	Sinkholed
2022-11-27	medium	applesoftupdate.com	Sinkholed

JavaScript (51)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=UA-41490239-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-41490239-1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 4e23af9caa91697c08dfd0d583a6096a cd31f82f20ffa2500999b69d372e6347abd613e4 419b1e1c5eaf9f8d7d35a2c8541764e4d397cf7b8a3eb763a8ed170e7267ecf3 Loading...

	www.googletagmanager.com/gtag/js?id=AW-123456789&l=dataLayer&cx=c	138 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=AW-123456789&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 0be544cdc9d835ca5ec2732d698119d4 8a8115e2752119eed3a4616ba3d4a31a8838bcce 3aa14203bea1a63aa75550673ff32bbe5b42090810b2dc0a23cd0b3d6e53bc24 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	110 B	2023-03-07	2024-04-23
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:56 Last Seen2024-04-23 23:17:57 Times Seen32 Hash 1186fa407cd09ee0b7b1e9d750f9cf38 764738381d633afa0f41a3da603723228ecf876a e7a5aa0785a2959b0c19fb53ebcac19d3503a65c304d1a9cf0a67a4b333549db Loading...

	zizr.id/integration/ferner-jacobsen.js	19 kB	2023-03-11	2023-03-11
Pretty URL zizr.id/integration/ferner-jacobsen.js IP 13.107.227.67 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash f900454f4bdfbd4e8b13ab49170f8299 3c859d3b492f1c11a5718219f2da48fd3041c0f8 8d8554ff1ca816fdb39e0039977554cd219b1520bbf82f6c87bf914f6b45497d Loading...

	www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js	1.0 MB	2023-03-09	2023-03-11
Pretty URL www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 87e5f8fc36685f3550060f0a7bcb787b 1de0b849a4e344f3ce9f459f328f36a53bbe169b 4eec736e3cb992b257558ca204d67b3634ea7174d0e6394adfa78b3d54f6470b Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	345 B	2023-03-09	2023-04-20
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-04-20 03:26:09 Times Seen2 Hash b2c35f693b6ea7d10a97da2be92aa90e fed7896d5fd03ca6a37dbb20edd433d4b4085002 a1047679006923a91bf038c601689786bce57c5935e7d5fa963f51f0389a21aa Loading...

	clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj	176 B	2023-03-11	2023-03-11
Pretty URL clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj IP 78.46.197.88 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 4e7e7829f0a983a2a39dc6ebea341baa ac474cf2934a4274163a4201d5a711401267e018 a0de238b03af8e51caee9f99f0c6cb872b5cd678c0ac3cac9a5d62733410c1f6 Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	32 B	2023-03-07	2024-04-23
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:56 Last Seen2024-04-23 23:17:58 Times Seen21 Hash 37fde609caac7c21f2d676bdf8353b24 321a6be5680cd8c760a8d03fb8f1fdea6b202837 e9329d9277ec88ea23c972960c40d6b1fc2b0345a72ed7f28481b060db5de227 Loading...

	www.fernerjacobsen.no/static/js/bundle.81eca8c6.js	280 kB	2023-03-09	2023-03-11
Pretty URL www.fernerjacobsen.no/static/js/bundle.81eca8c6.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 19e27a8ac8cc901521477faa592633a1 8177f1f0db11c3e5a340e117bedecacbf8feaaf0 bdaffd61fb6c8c9cf302c73f9b4895453fae925704b1014a602ca881ec173c5e Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	36 B	2023-03-07	2024-04-23
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:55 Last Seen2024-04-23 23:17:57 Times Seen27 Hash 497f3c1127cfd8ddcfb51899610527a0 67f9069dada27dc53e3b4f33667b70f9c9bc71c9 9de5ce4c519bcd15db050cd74daa325fef1687885ec7afbd466abda09162746a Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	67 B	2023-03-07	2024-04-23
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:56 Last Seen2024-04-23 23:17:57 Times Seen32 Hash bbf5fa867854f9e2eece81e5f36d96d8 788bcb0888229da912adc22ef6f804313d3dc0c7 a5198cfd1c60cb3455c7b2d9a2bf52656cc84271fe6fd64124155c0120e8e0aa Loading...

	www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js	10 kB	2023-03-09	2023-05-15
Pretty URL www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-05-15 12:41:04 Times Seen5 Hash ab90a692b73742c44b453a982a898055 fa73508b6dfb51c1bb7fb041b3056d1722033d55 efcd320fb737b15c9521b700196c1dc904c9844c6590edc328a7d5d4053b52b7 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js	65 kB	2023-03-09	2023-04-20
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:53 Last Seen2023-04-20 03:26:10 Times Seen3 Hash 0c179e9788ba0749148b58be21edfedc a02e120f403a17c2e1f26c791a1eff9f57da590b 9aecb0c6b86ac62e386941c51abaf6fbad67d2a4fa8c5e34b399a190c917bcf6 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/313.js	133 kB	2023-03-07	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/313.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-11-28 15:39:46 Times Seen33 Hash b4944b5833e0b1dcf0ec846d0315bd39 fef140993c03324110dfb30324e0c3a1be2f0df0 101cbba444238372c79e616078816639ad44e68f1f692a6fcc010010a54bdf61 Loading...

	api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false	1.6 kB	2023-03-11	2023-03-11
Pretty URL api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false IP 143.204.55.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash a05b4d6724003510a158dc34f90c6609 45cfa08679699de00b7a6ed73cf57a7b1a4af52d 5a138018e340940d2a47ccad48fbc856e6b1548e69359c31f393740db176f06b Loading...

	dd.kelkoogroup.net/tags.js	212 kB	2023-03-08	2023-03-11
Pretty URL dd.kelkoogroup.net/tags.js IP 54.230.111.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:35:33 Last Seen2023-03-11 23:51:30 Times Seen1 Hash 719419697fd8d1899b4340c1e8f8f4bd 9428b8faac276bc62d77ffe0f3200b2fb08b5f70 4e543add6a6498df41e7e9af3a6bf12ef160cb9d3b47bee9ec7088a747f2bffa Loading...

	unpkg.com/share-api-polyfill/dist/share-min.js	22 kB	2023-03-09	2023-12-26
Pretty URL unpkg.com/share-api-polyfill/dist/share-min.js IP 104.16.125.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-12-26 00:40:06 Times Seen11 Hash a682d7d9be997b6f512b6b965568df2a 83027782da8fcd94e6bf9feb104854cc606eef76 e5fbe8a98414519a9a575fa19cf9811eb88e32eb0847d61f985109929d6c8724 Loading...

	tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1	63 B	2023-03-08	2023-03-13
Pretty URL tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1 IP 213.155.156.188 ASN #1299 Telia Company AB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:03 Last Seen2023-03-13 17:16:59 Times Seen1 Hash 8b94ce4bc6dad8a1f0c617bd6452cfe0 5102037fd0a91669fdd2172432348a25e7c0c143 5dff2c10803a82290da0f8c1cba1762d98a3e27f2fe23d83841091eb19bc36a6 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/61.js	37 kB	2023-03-07	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/61.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-11-28 15:39:45 Times Seen31 Hash 07b83518a9d7f05d258a4142cd837f11 0db6205d93b1b42d7925ccb64fdc564b9fd254dc 681411d7703af3dc60c77ca5a44edd9bd0ce2922393975937d6be0358584000e Loading...

	consentcdn.cookiebot.com/sdk/bc-v4.min.html	569 B	2023-03-07	2023-07-06
Pretty URL consentcdn.cookiebot.com/sdk/bc-v4.min.html IP 104.110.3.72 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2023-07-06 06:53:25 Times Seen429 Hash c3ec01c3d295c22ea26afa0db60f3cd2 1b4b3461aa8d9b25a1c5f9e7472fabb0fe410053 2eca2b34bebf4e267d33b18974f96e62281bb48795c85db0c5c4c9ef1f9d4ef4 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/recommendation.js	11 kB	2023-03-07	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/recommendation.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-11-28 15:39:45 Times Seen23 Hash e62b4ef3310c9932a3be45097210d21f 3f8f2e16ecd751b5e2bbc349c309146e50d860e4 95427f653a90f7550e232d0bbe5f923b96cc0993544cea36a4e582dc9393a1d8 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/701.js	39 kB	2023-03-09	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/701.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-11-28 15:39:46 Times Seen26 Hash 388e5275e1896c1a19ee76ad28b2d9b7 4da789d8f383ba0e22e2a84ee0501bef2e996480 0bdc5e65a1217ff784e1bb89908050dc49d7c06e3f607f44f1d9bd3237356b10 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/285.js	3.1 kB	2023-03-07	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/285.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-11-28 15:39:46 Times Seen22 Hash 9ae30db00cbd3e5675bdb7bec6276615 bc145bf1b09483cf73dcfbb904230a0e84ece6a5 35c2e2a99c33eec7b673168c7c98027107644b8f4113422fd60d8c5bcda6af52 Loading...

	dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false	113 B	2023-03-11	2023-03-11
Pretty URL dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false IP 3.208.247.235 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 07cf21b46374a385bcebbd02cc33957b 09bdfc75567f223037ca32d64c486c5f86fb678e 2d38190f5dcdbd36b3a0ca2da831098705085a5cdc7757915414db230cd85007 Loading...

	api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false	9.8 kB	2023-03-11	2023-03-11
Pretty URL api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false IP 143.204.55.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash cdb64cf6b397252d7a03fa3e917fb076 5e863aa35547c8d6b553b75865a83c7f897cdc0c c10fb44fd20877c43672d221a62ef137a67b53324525fb04f53e385bcea0f2cf Loading...

	assets.findify.io/fernerjacobsen.no-config.min.js	78 kB	2023-03-11	2023-03-11
Pretty URL assets.findify.io/fernerjacobsen.no-config.min.js IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash f53cd4495ad261f4cbf8ea8b0ae77ac5 54ea8583cb4e2927cc115f1ef06829f1cdb2a2c8 f910cb5eb9931ba1729b040fa960303588c1de7c13ff6bc36b096eb0a2ade4cf Loading...

	gtm.adt313.net/jsTag?ap=1445461266	12 kB	2023-03-09	2023-03-11
Pretty URL gtm.adt313.net/jsTag?ap=1445461266 IP 54.230.111.106 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:53 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 19ef199b8d413f614f5a93f17dbc7d30 8f01d7fa0c41b98de140bb8d59de832ae4196b24 46e1dbd8b59cd17d996b75a459079239102e97471341a570c05fea906d4d9150 Loading...

	api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false	19 kB	2023-03-11	2023-03-11
Pretty URL api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false IP 143.204.55.124 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 24e01904220e9e1e870ab9e162f2ef37 072a5caebbb38f6c70f0ec680d1c02c1c038260c 6110af550d4f4c6b7eaa3289505841a285c21453a1da9baa72fdd457acb5aa69 Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	51 B	2023-03-07	2024-04-18
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:56 Last Seen2024-04-18 23:58:51 Times Seen16 Hash 01de31ea6d1866b4ab30d6d2d27863b6 196e44ff99766cf716368b0459a411b571d1a2c0 f36d5fe83c6c5ae9e69d2681a59230aa7f14cdef1ae3efd5dbe88f914d02ca1a Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	31 B	2023-03-07	2024-04-23
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2024-04-23 23:17:58 Times Seen30 Hash 46be6015e66aaef6ccab8c4e85ab5b10 7c8e8be8a9f409d6e7ea8804765f536607695c03 a5a1cd058275a830c8b79263d6b7b6398076870f6a3f329b7285d9a7c2ccc41a Loading...

	tb.de17a.com/d7.js	17 kB	2023-03-07	2023-04-20
Pretty URL tb.de17a.com/d7.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:36:00 Last Seen2023-04-20 03:26:10 Times Seen3 Hash f0e2f131ae804115378b7deacbb09277 3fd8c9bcdfeaabe5d8748c1d8ceb685b560a6f1e 3b8f4615e5a2eecbfda28f9702594512c8e764684693909d306bfc565238ad80 Loading...

	www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js	7.8 kB	2023-03-10	2023-05-15
Pretty URL www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:00:02 Last Seen2023-05-15 12:41:04 Times Seen3 Hash ad3109069608f5731741fd5ad8e2202e f142395b4534a1f1d92d59f22e77a4e8cee00835 53789a292fdb1ba9dbcbd8d27b8efd12d1cd980602065ecb09544ff031a2737e Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js	119 kB	2023-03-08	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:12:22 Last Seen2023-11-28 15:39:46 Times Seen32 Hash 97f798998864e3f834462cfe0d4aad3c 4d6ca3efddf5e1336aeb78fe4a8b129dabade7b1 02804ecbe987045e160b107959c2c33cc1652bfab860eca57087172da746eccf Loading...

	consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false	250 kB	2023-03-11	2023-03-11
Pretty URL consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false IP 23.72.139.51 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 2e4d98cb7513fdc420d729e193f3c078 8be3e996b16d3a4bb5cfccee484e756dea372d74 f941b17fbc8b34e4db5b9c111cc00ea5f32141075b3fd845e2106697071bc4a4 Loading...

	assets.findify.io/fernerjacobsen.no.min.js	6.9 kB	2023-03-09	2023-04-20
Pretty URL assets.findify.io/fernerjacobsen.no.min.js IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:53 Last Seen2023-04-20 03:26:10 Times Seen3 Hash a99dbe7320d0a136e4712389e863d87d bb002cc395ecd04ae6038d4893a8e227a20df17b 8fdd68e6eb459d2520ffaef42973d3b1e1ef77499f5932d4ae83771eac201f94 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MRJM8V	213 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MRJM8V IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 4a2c371b0ae0e1a9ca90ba2c43402064 368a221e91a1540073cff8b691ee24ceb3fb7ff7 f66e4d8a78c90fbd6a08197f34b18d6e51fece54ec7f85d4abbc3d76266566f7 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/650.js	52 kB	2023-03-09	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/650.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-11-28 15:39:46 Times Seen29 Hash 0aa4efcfe35fe52006a0ade6295a34e1 feb22d3d8d560415d7c2b1ced415644710f81f39 a931e6c0ecf2ef7b04c882e9732f6c8bda5e463236e3ee8c4ee5bde6dcec41d4 Loading...

	cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/250.js	107 kB	2023-03-07	2023-11-28
Pretty URL cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/250.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-11-28 15:39:46 Times Seen25 Hash ac57e30614d60e02aff8ea85009b5b43 4115d14bcf79e7d1880b0bc37ac93da90084cba9 5ca872098003e6cedbfdda0e2fe0aa3298a711c616c979d70b7e7396be27ea36 Loading...

	tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2	1.8 kB	2023-03-11	2023-03-11
Pretty URL tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2 IP 213.155.156.188 ASN #1299 Telia Company AB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash edabd7b5e18d40e251ccd950ce2b7dc9 70038afd560f64b5773488b6a349f80544d59477 dff9a0eeea6e77b0e2a75fcb3335abab9baa6fbc04432df665c3fc5734cf47b8 Loading...

	cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated	145 B	2023-03-07	2023-12-04
Pretty URL cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated IP 151.101.85.26 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:53:17 Last Seen2023-12-04 15:23:45 Times Seen34 Hash 475127a41d63256aeff4aa3508df2d3f d67dc94cf6f6008a511601cedade751c320a03f1 aa0149d49e79b6dcb1373c07b259d8542b032b832df8603acbaf92ccce32be9f Loading...

	www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono	2.4 MB	2023-03-11	2023-03-11
Pretty URL www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 866a92e4d9511eab9c986ab4953c0de1 35d3d770755728db917195d3ae38894338888020 cb4d6f57f2705109ca11a2a9ca072e23e4091274c8ada42f5adecaa2df9d0e22 Loading...

	www.fernerjacobsen.no/tryggehandel.js	4.9 kB	2023-03-09	2024-01-22
Pretty URL www.fernerjacobsen.no/tryggehandel.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2024-01-22 00:22:32 Times Seen18 Hash c3c4cebe03255b2c71d2915d6c93833b cdf5453f5678a5bd515fa8e15a5d7de4e9f3ea56 45d37042772ebd663daa311fd3fd078bd3a82f01efd3a98a1dd67396eed56a5b Loading...

	www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js	21 kB	2023-03-09	2023-05-15
Pretty URL www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js IP 23.36.77.11 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:45:54 Last Seen2023-05-15 12:41:03 Times Seen4 Hash f759a032889efda428a6f1883e046793 4d7def0331f84ed1dc25a9bb4732b00c08693881 65f54d45903f4b40c430f6f541974951284e590e797a80281294a37a09827fe1 Loading...

	consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf	103 kB	2023-03-08	2023-03-17
Pretty URL consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf IP 23.72.139.51 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:58 Last Seen2023-03-17 23:08:52 Times Seen1 Hash 46a765d70e4c842730680a719d0b3a01 e1240fadffba87daf9dbd9c560d655a3326d6cbf 8a540cc5945aea6d81f7705af39fc8868fe7e72bcbf2f0396ace451451109e22 Loading...

	http:blank	342 B	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 0b2d9702b4c6da4dc48072b6525c30d7 e3d4d9c96f603f833bea877c52bda81da99092c9 9c3d7d1e3f3621c1e4b601a18a77089f589d3f1c0a8cad51d9bd3b488d31045f Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&currency_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4	2.5 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&currency_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4 IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 553a948b60ff81cab653e0b23aaed89d d46d19b8e456979dbc260fa99496d40993fe941e 1fc8da6b9811c54f7d94f9e101a4aa4a828d4503c6cc48e627856a34f976e464 Loading...

	applesoftupdate.com/	376 B	2023-03-11	2023-03-11
Pretty URL applesoftupdate.com/ IP 216.245.213.77 ASN #46475 LIMESTONENETWORKS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 50292d16e39d987ff6471ddbee897050 77e8de88b8eaca7aafe57ae157dccf46101824a6 09a03f44c27f503ad934c4a2c4138c485ba82e9ab9b7486a6d390936b97f7910 Loading...

	dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51	850 B	2023-03-11	2023-03-11
Pretty URL dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 IP 3.208.247.235 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash 8d711b3671e8883d510aec2c0867c207 54e1c88871da11e77f11b13bc6a8afaa6f2036ed f15f8ffba4ac3c948c36802429d3152027cc344e1c3564c2e342ebb0207f5fb5 Loading...

	lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410	363 B	2023-03-11	2023-03-11
Pretty URL lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410 IP 5.9.110.29 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash a0015eca408656893989dda72886bba5 0764dd22715cd56af337c5ba5b28e60a15001b91 68f1337f92a1db31846864f97c091fafe3cc6eadfec64728370e45d2876088f3 Loading...

		Size	First Seen	Last Seen
	#1 Write - cd8cf372380372b940cb39780e13daad	1.9 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 21:17:46 Last Seen2023-03-11 21:17:46 Times Seen1 Hash cd8cf372380372b940cb39780e13daad 97cd023c30710391088dcb0c39ba4362ce664942 185ce91c46b15b28c3580c34f8e6f4c93d487213280d6b8033e5db7374eab2ba Loading...

HTTP Transactions (159)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17239
Expires: Sun, 27 Nov 2022 14:27:17 GMT
Date: Sun, 27 Nov 2022 09:39:58 GMT
Connection: keep-alive

applesoftupdate.com/

216.245.213.77

200 OK

480 B

URL HTTP/1.1
applesoftupdate.com/
IP
216.245.213.77:0
ASN
#46475 LIMESTONENETWORKS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (480), with no line terminators
Size
480 B (480 bytes)
Hash
4e1af033e4604a57241c433f15a49683
152103419a51e05bc3f679376bc3bba3bdd9df9f
a4fe596be3759c6fd62a1d4d3f93628ab4d10aeb7342209035f7a14552251667

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 480
content-type: text/html; charset=utf-8
date: Sun, 27 Nov 2022 09:39:58 GMT
server: nginx
set-cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612; path=/; domain=.applesoftupdate.com; expires=Fri, 15 Dec 2090 12:54:05 GMT; max-age=2147483647; HttpOnly

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3429
Cache-Control: max-age=92899
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:39:58 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:28:17 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 09:19:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1237
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4764
Expires: Sun, 27 Nov 2022 10:59:22 GMT
Date: Sun, 27 Nov 2022 09:39:58 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: eppfpe6SMXpUtemDACloq0HwllPRs9uuApPlZjc9mcco3gv2pmmvlFWw0eg+UtKpkDhPVOIFETc=
x-amz-request-id: YX35FZ13738PT3J3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 08:44:34 GMT
age: 3324
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:39:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

applesoftupdate.com/favicon.ico

216.245.213.77

404 Not Found

9 B

URL HTTP/1.1
applesoftupdate.com/favicon.ico
IP
216.245.213.77:0
ASN
#46475 LIMESTONENETWORKS

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://applesoftupdate.com/
Cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612

HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sun, 27 Nov 2022 09:39:59 GMT
server: nginx

applesoftupdate.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612

216.245.213.77

302 Found

11 B

URL HTTP/1.1
applesoftupdate.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612
IP
216.245.213.77:0
ASN
#46475 LIMESTONENETWORKS

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612 HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://applesoftupdate.com/
Cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sun, 27 Nov 2022 09:39:59 GMT
location: http://dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
server: nginx
set-cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612; path=/; domain=.applesoftupdate.com; expires=Fri, 15 Dec 2090 12:54:06 GMT; max-age=2147483647; HttpOnly

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 09:11:12 GMT
cache-control: public,max-age=3600
age: 1727
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51

3.208.247.235

200

1.1 kB

URL HTTP/1.1
dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
IP
3.208.247.235:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1100 bytes)
Hash
bff9e278bf323b9bd14f8944b4051405
1cdca436c4dd921227d24498813a88a1c2eabcbe
0fa51f9f1fc566d96d5358c17ab76f654207db83f419e75006f46d7c19003f82

HTTP Headers

GET /zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://applesoftupdate.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: HWzayRGX

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6015
Cache-Control: max-age=90427
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:39:59 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:47:06 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

3.208.247.235

200

356 B

URL HTTP/1.1
dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
3.208.247.235:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
356 B (356 bytes)
Hash
c61d8ac8208eb0a2f44b44341c97e33b
45c015ce1fd9796bf9825c816430a7eaa51cc245
6edf0cdb966f91cb42b22372110bbcb8d67d02fa12be2612a2719abc3a48667e

HTTP Headers

GET /zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ALZgEdAD

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0721a5029c688e1afa783e516714e508
9ca9e1f30f86ac8a6d5e15929ebe9d2b23e4face
6e445043f1de83d057ff0364830bd096be0be52e25427713673056040369b0b6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E445043F1DE83D057FF0364830BD096BE0BE52E25427713673056040369B0B6"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14918
Expires: Sun, 27 Nov 2022 13:48:37 GMT
Date: Sun, 27 Nov 2022 09:39:59 GMT
Connection: keep-alive

push.services.mozilla.com/

35.161.230.192

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.230.192:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yn55iJkjajyXpsY39ML9dA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WlHF7kO6t3qSzsMtivqp4k6wdcs=

clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj

78.46.197.88

200 OK

357 B

URL HTTP/2
clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj
IP
78.46.197.88:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (357), with no line terminators
Size
357 B (357 bytes)
Hash
d89795f1fd4593c56eb0726ac94cfc09
2f6ac252edb54c9a6c254c0690edfa3693c105f4
1d0e633c1d0d241514819821ab335d97374b05e2e57fddeb761a32b64f427638

HTTP Headers

GET /s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj HTTP/1.1
Host: clever-redirect.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: fde7d8409902205b0ea4c877b43ca40b=f819c981f8d4a4fc68abc2833b2998e329ea2393fb2c7bb5cfdd73e997a8f952a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22fde7d8409902205b0ea4c877b43ca40b%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Mon, 28-Nov-2022 09:39:59 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 357
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 09:39:59 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2

dipaka-ead.com/favicon.ico

3.208.247.235

404

653 B

URL HTTP/1.1
dipaka-ead.com/favicon.ico
IP
3.208.247.235:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size
653 B (653 bytes)
Hash
ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

HTTP/1.1 404 
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: VTBPJNcR

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2fc5d0e264068b334c44f627b7581cb0
b13ae71a3e2727587f2b2b212ced135feb6703e0
748d34be18b9cd25ddb8f887e7de9e7aed70ce8501962796ebc302ae9075ec91

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "748D34BE18B9CD25DDB8F887E7DE9E7AED70CE8501962796EBC302AE9075EC91"
Last-Modified: Sat, 26 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7946
Expires: Sun, 27 Nov 2022 11:52:26 GMT
Date: Sun, 27 Nov 2022 09:40:00 GMT
Connection: keep-alive

lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf

5.9.110.29

200 OK

616 B

URL HTTP/1.1
lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf
IP
5.9.110.29:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document, ASCII text, with very long lines (616), with no line terminators
Size
616 B (616 bytes)
Hash
84629a270eed0a4eea656e9cff2e4400
3f046d8cc2efde0856a9420e0e40989f0c79408a
96d4802b454e3a49f193aa48847a2f0913a4d9dab1f6dcdf93b419743efc5c7d

HTTP Headers

GET /s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:00 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Set-Cookie: 7af24556e0c4f4a7848a998f9fd668a3=94415162b60a25a0f175e81768509183ed6713772fd807ec870fd8232836f9a6a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%227af24556e0c4f4a7848a998f9fd668a3%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Mon, 28-Nov-2022 09:40:00 GMT; Max-Age=86400; path=/; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410

5.9.110.29

200 OK

544 B

URL HTTP/1.1
lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410
IP
5.9.110.29:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (544), with no line terminators
Size
544 B (544 bytes)
Hash
d4ca9071e8f4ba9d4f5eb0b21076b1fd
e2ccbdd86ccd9e9a46a8b5fc67c9e901f78944d4
dd45a835bbe043d838f41015308a40158ca8a2314c94981bc300d63736a6880c

HTTP Headers

GET /s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410 HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 7af24556e0c4f4a7848a998f9fd668a3=94415162b60a25a0f175e81768509183ed6713772fd807ec870fd8232836f9a6a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%227af24556e0c4f4a7848a998f9fd668a3%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:00 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
204b24e9ac60abc06a19386cb6571322
dd66f37e6d236ee6b0f7c9b54ef64c715da2942b
bb6992d0c6858671c529cfc4dc5d7368f7dac927e3ebed6a402812a007b665d9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BB6992D0C6858671C529CFC4DC5D7368F7DAC927E3EBED6A402812A007B665D9"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1144
Expires: Sun, 27 Nov 2022 09:59:04 GMT
Date: Sun, 27 Nov 2022 09:40:00 GMT
Connection: keep-alive

api.yadore.com/v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549

88.99.112.2

302 Found

0 B

URL HTTP/2
api.yadore.com/v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549
IP
88.99.112.2:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549 HTTP/1.1
Host: api.yadore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 09:40:00 GMT
location: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
server: nginx
x-powered-by: PHP/8.0.25
content-length: 0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13049 bytes)
Hash
1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 28393
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 42500
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6859 bytes)
Hash
f80a9a9b55da31c98663e157dde74a19
26b8dd82140c0db021048e11bff65a391dc6b444
680c39e4ea1d784db9831958942a64f3e83618dc443c8bcaa34223d85bb5b926

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: 4a1b13ad-9455-401d-a914-c1ada2191977
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTHRroAMFR8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-4e5d630b23cdeb2e4b6d75d1;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D24B6xoLZ2nu1NdlMU5TgJSc-DfzD6vrMzgU3s6tAiAsUuzBb_t89Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 08:21:28 GMT
age: 4713
etag: "26b8dd82140c0db021048e11bff65a391dc6b444"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9063 bytes)
Hash
e615cdc2e330b5cf76435abce9aa631a
71f737c3cee7766494157cd6491ce247a785c09e
853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: f00ac8bd-6466-4c92-9b99-0e71b4b2345c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr4ENtoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-0e3a57932987e29521388dd7;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ntfumip5IjOlyoe6ASlwJ1PjPLN1yZHkK_iiDDKfmMCyI__PrrGVMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 11:33:57 GMT
age: 79564
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4023 bytes)
Hash
9de86e0161ef1255306ddfce1c2549d7
f77ff5378766c6b14125de0e003b21f34726672b
7db14b31e7e2d882eb446bd6056ad9e8eed6e1581837a6d54d2e0d26aa2600bb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4023
x-amzn-requestid: e9fe84db-d488-4ec7-81e6-c819bb625944
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b44BuHsmIAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d3a4-54fbd7892170110e4bafc899;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:13:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GYi18tS1H9gOh6y9rQGwRx9VANq4dYJ_vJIpMD0kWIXFVNSif-sxXA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:05:29 GMT
age: 41672
etag: "f77ff5378766c6b14125de0e003b21f34726672b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 42504
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false

143.204.55.124

200 OK

32 kB

URL HTTP/2
api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
IP
143.204.55.124:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Size
32 kB (31981 bytes)
Hash
9e2306b432bc5bbbf53b293355e4baf7
5907f48fb1ec7392bb05e9a940b4f2c60d43a6d0
895ad7f1a5ee9f0d602867ba68e0949642185647b73d03dc4fdd4baf0e75c4de

HTTP Headers

GET /publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 31981
x-gravitee-transaction-id: 9a5e57b7-ea60-4cfc-9e57-b7ea601cfc23
x-gravitee-request-id: 9a5e57b7-ea60-4cfc-9e57-b7ea601cfc23
leadid: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183
clickid: 107698148_1669542000645_5617899
country: no
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
set-cookie: datadome=0qq3bxmFbhsZYtsGWsCvimi-ZGOnqrBHaELJxcgOaxqkCZaZ9f9ifRBREh~CphZeUB3iH9PsiFFIPo4AZ8ukI~3ZVyPwS4aFU2vZVOgEgeGw6sx~Ne5M4rC5HQl736Nv; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=Lax; Path=/; Domain=.kelkoo.net; Secure
kelkooID=a4c6294-184b8753805-1a94f1; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
x-datadome: protected
request-time: PT0.866498S
x-robots-tag: noindex,nofollow
referrer-policy: origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
date: Sun, 27 Nov 2022 09:40:01 GMT
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VtJnF-ioL4hk4xA-OaUcHCTA4pzbk6jNgmOUQFi0AkmbtKsMB70SQQ==
X-Firefox-Spdy: h2

dd.kelkoogroup.net/tags.js

54.230.111.104

200 OK

43 kB

URL HTTP/2
dd.kelkoogroup.net/tags.js
IP
54.230.111.104:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65432)
Size
43 kB (43164 bytes)
Hash
1e9601b9f2fcd0d1d742e87fd046749c
88431bfdad7d8be4cf62396a57aebcec0de09827
4bcdd319b49ac3e4683e774aefe69157100f9ebee3bc428e425cfc93a7da9feb

HTTP Headers

GET /tags.js HTTP/1.1
Host: dd.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/javascript
content-length: 43164
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Thu, 17 Nov 2022 15:19:16 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 615f944336054ae07b8e7c415ddbad44.cloudfront.net (CloudFront), 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
date: Sun, 27 Nov 2022 09:20:05 GMT
cache-control: max-age=3600, public
expires: Sun, 27 Nov 2022 10:19:58 GMT
etag: "33bf8-5edac1cc94a7f-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: 7QX41ZPfsEdrcrwCCmMjNBZcLTIQdOwK_6kscQRIwWBu1B8f9s2joQ==
age: 1203
X-Firefox-Spdy: h2

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
42d19e502650716229ee612769e3fc14
2812ab691f84a638f5cbcdf16e7fc606c819acb1
c19862f9090eadde6ca024265a2fa6cb1def302c0d00473840738fe63a902fb5

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5176
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:01 GMT
Last-Modified: Sun, 27 Nov 2022 08:13:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
42d19e502650716229ee612769e3fc14
2812ab691f84a638f5cbcdf16e7fc606c819acb1
c19862f9090eadde6ca024265a2fa6cb1def302c0d00473840738fe63a902fb5

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5176
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:01 GMT
Last-Modified: Sun, 27 Nov 2022 08:13:46 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899

95.211.116.27

200 OK

68 B

URL HTTP/1.1
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff43751c4e6ff4b34703f59267ef2462604215f3b82ef3aee3de3a3f7ef30bb64da41afc22d885d113524b5dfa0b169c1908ebf7797342134faaac669d350e9e039f742fca50909a2322b2e05ddf4593454dc54281b623b90d7bdf2100a9f3039b207b0780e2ca5573135732b8448b81aa0fccc6473146e96bb7b5a3f497838451f4e5fc55a1b425b8e26d2f0f1cd9a0fd251ce702184e7384b80e4d6c9159d963f3025f128064fc695ec57550bfec443b13593d8fd2111859bfec0cac5eaa21f728208d1f7ddb6fb281646400b63c1df7cc0f4348da03cf8ea49e655cdb9bc5dc33aec5ed265dfac16bb156b879c90c9c2495a2fd8e5301589346cb68ffd0910dbfb2e91edda7ac6807339dcaede825fd4cf36a4fdfbee86e008b07b9790b261aff7&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:01 GMT
Request-Time: PT0.001596S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: image/png
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=94
Connection: Keep-Alive

no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899

95.211.116.27

200 OK

0 B

URL HTTP/1.1
no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff43751c4e6ff4b34703f59267ef2462604215f3b82ef3aee3de3a3f7ef30bb64da41afc22d885d113524b5dfa0b169c1908ebf7797342134faaac669d350e9e039f742fca50909a2322b2e05ddf4593454dc54281b623b90d7bdf2100a9f3039b207b0780e2ca5573135732b8448b81aa0fccc6473146e96bb7b5a3f497838451f4e5fc55a1b425b8e26d2f0f1cd9a0fd251ce702184e7384b80e4d6c9159d963f3025f128064fc695ec57550bfec443b13593d8fd2111859bfec0cac5eaa21f728208d1f7ddb6fb281646400b63c1df7cc0f4348da03cf8ea49e655cdb9bc5dc33aec5ed265dfac16bb156b879c90c9c2495a2fd8e5301589346cb68ffd0910dbfb2e91edda7ac6807339dcaede825fd4cf36a4fdfbee86e008b07b9790b261aff7&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /fp?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:01 GMT
Request-Time: PT0.003548S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=89
Connection: Keep-Alive

api.kelkoogroup.net/favicon.ico

143.204.55.124

404 Not Found

40 B

URL HTTP/2
api.kelkoogroup.net/favicon.ico
IP
143.204.55.124:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
93eb2a33fca1bed122be55e52dbcb18b
f75a657d84bec6cc3f180ac194af3d21da9fe7bf
d08874f7931c8d35c1ca54fcc0de50c9a267a0036c61626bc420610186bbacfa

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-type: text/plain
content-length: 40
date: Sun, 27 Nov 2022 09:40:01 GMT
x-gravitee-transaction-id: 1300b1c6-e03f-46ed-80b1-c6e03f66ed5f
x-gravitee-request-id: 1300b1c6-e03f-46ed-80b1-c6e03f66ed5f
x-cnection: close
x-cache: Error from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1-1bWgOp9SFqU1ZJ2rwZP2NqkACVsML9hXd4m_aLmSYl_-qZ0ho4VQ==
X-Firefox-Spdy: h2

no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono

95.211.116.27

303 See Other

0 B

URL HTTP/1.1
no-go.kelkoogroup.net/redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff43751c4e6ff4b34703f59267ef2462604215f3b82ef3aee3de3a3f7ef30bb64da41afc22d885d113524b5dfa0b169c1908ebf7797342134faaac669d350e9e039f742fca50909a2322b2e05ddf4593454dc54281b623b90d7bdf2100a9f3039b207b0780e2ca5573135732b8448b81aa0fccc6473146e96bb7b5a3f497838451f4e5fc55a1b425b8e26d2f0f1cd9a0fd251ce702184e7384b80e4d6c9159d963f3025f128064fc695ec57550bfec443b13593d8fd2111859bfec0cac5eaa21f728208d1f7ddb6fb281646400b63c1df7cc0f4348da03cf8ea49e655cdb9bc5dc33aec5ed265dfac16bb156b879c90c9c2495a2fd8e5301589346cb68ffd0910dbfb2e91edda7ac6807339dcaede825fd4cf36a4fdfbee86e008b07b9790b261aff7&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/1.1 303 See Other
Date: Sun, 27 Nov 2022 09:40:01 GMT
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183
clickId: 107698148_1669542000645_5617899
country: no
Location: https://fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.025332S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=2tT-_sV~EUOiXUX-DgQXPy6_fXyc9mwaMoO9aDQqXbCgL5d849HnLA~NVeIfFSizuxxKEv7WcCGD_ag2rxSjiGIcOiP~2F5Lm5hdi6EF_cS143zD7ZN4Rnw3VUiTywxi; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=95
Connection: Keep-Alive
Content-Type: text/plain

fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono

23.36.77.11

301 Moved Permanently

0 B

URL HTTP/2
fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1
Host: fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
date: Sun, 27 Nov 2022 09:40:01 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118

142.250.74.174

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
access-control-allow-origin: https://api.kelkoogroup.net
date: Sun, 27 Nov 2022 09:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono

23.36.77.11

200 OK

275 kB

URL HTTP/2
www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
data
Size
275 kB (274759 bytes)
Hash
3f978b42eb891cb214fff369dca100e8
d4f0a3aa1667d4390d1b94210b385a63773c5851
07e05238396434ce9cecadbc13cd144b82e5b1fdf3c96025cf6521fa737540e7

HTTP Headers

GET /?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
content-type: text/html
link: </static/css/13.style-9a13872d.css>; as=style; rel=preload, </static/css/style-157ad380.css>; as=style; rel=preload, </static/css/19.style-89ee4d1f.css>; as=style; rel=preload, </static/js/19.4d89f99d.chunk.js>; as=script; rel=preload, </static/js/bundle.81eca8c6.js>; as=script; rel=preload, </static/js/StartPage-StartPage.0284760d.chunk.js>; as=script; rel=preload
content-encoding: gzip
x-geoip-country: NO
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
set-cookie: SalesSource=; Path=/; Expires=Sat, 27 Nov 2032 09:40:02 GMT
geoipCountry=NO; Path=/; Expires=Sat, 27 Nov 2032 09:40:02 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/css/13.style-9a13872d.css

23.36.77.11

200 OK

274 B

URL HTTP/2
www.fernerjacobsen.no/static/css/13.style-9a13872d.css
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (397)
Size
274 B (274 bytes)
Hash
01caaf0a8c3e5421fe9dd71e3d901a4b
daa7f0a5520d997725ed67031c60bcb23c8bfa52
bd2524179bae1920029a591d53a4801d2051b54a2a20c0c31a070740d9e99995

HTTP Headers

GET /static/css/13.style-9a13872d.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=UTF-8
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
x-proxy-cache-static: MISS
x-server-instance: nginx-4
accept-ranges: bytes
content-encoding: gzip
content-length: 274
cache-control: public, max-age=18921563
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/css/style-157ad380.css

23.36.77.11

200 OK

12 kB

URL HTTP/2
www.fernerjacobsen.no/static/css/style-157ad380.css
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (11705 bytes)
Hash
ceb06488a7d60a89e41a1510f63ddb6a
0884a5cae43526cd6a9a267369ebd56db75e2538
cdec021d5022159a35d479976b4efcf94a15a6ae117d41a0635dacfac7d9f7be

HTTP Headers

GET /static/css/style-157ad380.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
content-type: text/css; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 07:53:06 GMT
etag: W/"10d49-18465ad9a24"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003t
content-length: 11705
cache-control: public, max-age=30149752
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/css/19.style-89ee4d1f.css

23.36.77.11

200 OK

4.0 kB

URL HTTP/2
www.fernerjacobsen.no/static/css/19.style-89ee4d1f.css
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (14448)
Size
4.0 kB (4046 bytes)
Hash
d2e744105ec722e10d237a7831485450
01dc4ee73133f7d26c0c2933e5550d49ab2ad4e4
dc4d027ff72eca189a213629c7130a560539f26e11705c526778415b18e8bd5a

HTTP Headers

GET /static/css/19.style-89ee4d1f.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=UTF-8
last-modified: Tue, 05 Jul 2022 13:48:52 GMT
content-encoding: gzip
x-proxy-cache-static: HIT
x-server-instance: nginx-1
content-length: 4046
cache-control: public, max-age=19023596
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js

23.36.77.11

200 OK

2.1 kB

URL HTTP/2
www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (7755)
Size
2.1 kB (2090 bytes)
Hash
7a7b4d000cc7a332beadf09a961de7ba
afeca864e0303173069e41a191b7c81965210756
e6d171c7f8cba750eefff48ee675be16d71641fcf6727dfa27ede39d54855a6a

HTTP Headers

GET /static/js/StartPage-StartPage.0284760d.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
content-encoding: gzip
x-proxy-cache-static: HIT
x-server-instance: nginx-1
content-length: 2090
cache-control: public, max-age=18933635
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp

23.36.77.11

200 OK

128 kB

URL HTTP/2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x511, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
128 kB (127738 bytes)
Hash
a0897afeb4670e1a4d3d787b786e0b3d
e4aeb2441ef86c4b91850f25a13b4a6c06071f39
06d9d7b709ee8d477375f5352a80c74c5d5e8de0a3fa32d9e5246f30803d2436

HTTP Headers

GET /pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 09:58:48 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637c9b09-30b71"
server: Akamai Image Manager
content-length: 127738
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:03 GMT
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js

23.36.77.11

200 OK

280 kB

URL HTTP/2
www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
280 kB (280064 bytes)
Hash
fd9fadb544b85aed23e4ee9a0ed8038c
e9c7aaeca841f2bc2c29d3ea298bfc82f563da3c
2dd01c3053400fa99442c0327507e5fcf3f4e631649dd3706b0c8d72da6650a0

HTTP Headers

GET /static/js/19.4d89f99d.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 11:21:38 GMT
etag: W/"fa059-184666c82cd"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003r
content-length: 280064
cache-control: public, max-age=30160021
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/js/bundle.81eca8c6.js

23.36.77.11

200 OK

57 kB

URL HTTP/2
www.fernerjacobsen.no/static/js/bundle.81eca8c6.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
57 kB (56566 bytes)
Hash
d73fe8b393a89c3ec61d4cd2e59b24b8
c9bf349bdf2f3dfe81108c3da091d737f9828ed0
16a6fddf3635861e7ee001a40190620c585c23a7c28dc2a15c28372299ef16c7

HTTP Headers

GET /static/js/bundle.81eca8c6.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 11:21:38 GMT
etag: W/"44767-184666c82d5"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003r
content-length: 56566
cache-control: public, max-age=30160100
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

use.typekit.net/xji3gjg.css

23.36.76.186

200 OK

817 B

URL HTTP/2
use.typekit.net/xji3gjg.css
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
817 B (817 bytes)
Hash
5dc1295e7465a604b0756c1d0d30c7e1
709746c373f393f2ede4b223012e0dc056a51e80
490790d0d40cb2b6e75a6d59799e15c232fe255770785c37d97d32240e7c7e26

HTTP Headers

GET /xji3gjg.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 817
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css

23.36.76.186

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated

151.101.85.26

200 OK

109 B

URL HTTP/2
cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated
IP
151.101.85.26:0
ASN
#54113 FASTLY

File type
ASCII text
Size
109 B (109 bytes)
Hash
442afba0c349583b010b3f2a3c35c005
9d43a1925afb9fdfd3bbced724054117d2ceacbe
7c7993ec427d23793c611b229dde93afbe0bfabd7457f101bd4269c8f13411f7

HTTP Headers

GET /v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated HTTP/1.1
Host: cdn.polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Sat, 19 Nov 2022 11:32:21 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1660, PASS, fastly;desc="Edge time";dur=11
content-length: 109
X-Firefox-Spdy: h2

unpkg.com/share-api-polyfill@1.1.1/dist/share-min.js

104.16.125.175

200 OK

8.5 kB

URL HTTP/2
unpkg.com/share-api-polyfill@1.1.1/dist/share-min.js
IP
104.16.125.175:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (22039)
Size
8.5 kB (8477 bytes)
Hash
dc88500e6b3996d8ff689ad3c9aac605
2bc21d61b92e226714bf7185e79207d00db18ff9
326c1aac2c68e37088f6f8bda21a07f1aec7df06846b0119a78e85ce0e20559a

HTTP Headers

GET /share-api-polyfill@1.1.1/dist/share-min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5784-gwJ3gtqPzZTmv5/rEEhUzGBu73Y"
via: 1.1 fly.io
fly-request-id: 01GDTKZMBR3RJV5TXFF62VKVJP-fra
cf-cache-status: HIT
age: 5422543
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e672ec20b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ab5cfc34009af6374a48a669db0aa627
fd4a5a97f743d1cc43d115e7df2551e23b89a203
5e81173bc4a2a4b14b7d7334d86c679f46b0de5c84280e2c5a49a536a2a0bd24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5563
Cache-Control: max-age=102949
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:03 GMT
Etag: "638209dd-118"
Expires: Mon, 28 Nov 2022 14:15:52 GMT
Last-Modified: Sat, 26 Nov 2022 12:43:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280

use.typekit.net/af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3

23.36.76.186

200 OK

29 kB

URL HTTP/2
use.typekit.net/af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 29448, version 1.0\012- data
Size
29 kB (29448 bytes)
Hash
858494ea87b7eca2bd52ecb0eaa97342
c5c66ca8ae5d0f4269ef61a27fdd25f639e681c5
1cceacea7ebbbb2c85638e7eb50b1f894fa261ca0b80d183971b42a6c30de7db

HTTP Headers

GET /af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29448
etag: "c64b4692d9d39a2fd5bd5786ad57155413f36625"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

27 kB

URL HTTP/2
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Size
27 kB (26888 bytes)
Hash
6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc

HTTP Headers

GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.186

200 OK

28 kB

URL HTTP/2
use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 27712, version 1.0\012- data
Size
28 kB (27712 bytes)
Hash
ce87f4e0d16868acaa3a5f4d894e9c29
b0b82fa20adb7c495172f8345f0ef0a64d2f815e
fc19e2d873270cfa3ce69c2345fac36b8ab1b0fe2cd8983f0946a8c180f236b3

HTTP Headers

GET /af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27712
etag: "79f9defc7632bc87dc40a06c82c11882a3000992"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3

23.36.76.186

200 OK

28 kB

URL HTTP/2
use.typekit.net/af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 27872, version 1.0\012- data
Size
28 kB (27872 bytes)
Hash
0d593a6232ebaebc5dc7bb1a8e03aa8b
369e1e033abf18fdb8370d00d0b520e825c3fe20
63c4f0181f864289877cb36b11db32f28858a9716b7034cb1469b1036b474620

HTTP Headers

GET /af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27872
etag: "9117e591d6237d7c914b381911e03d2d7e28a9e3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/ferner_favicon.png

23.36.77.11

200 OK

822 B

URL HTTP/2
www.fernerjacobsen.no/ferner_favicon.png
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 62 x 76, 8-bit colormap, non-interlaced\012- data
Size
822 B (822 bytes)
Hash
d8789e01bbbbd00194ef2d2e2b4a6a0b
d8e10a13d68cd05f5ea8e35bf7a9d3a98f1bf9ac
d4d74c8e5667f31e4b80c46c684e8d03e1a16e606072f2ce42c2ba84a2e76d64

HTTP Headers

GET /ferner_favicon.png HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 822
accept-ranges: bytes
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
x-geoip-country: SE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
cache-control: public, max-age=18933249
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

286 B

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x80, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
286 B (286 bytes)
Hash
cfabe1510fd6777d7adbcc0fd6256a6b
746d15b952b81244070b18194231f6d4fd29ce12
b3eba4d78691d81d6691e20e93ef4478dba122106a7767c22ef8f547dab96fcc

HTTP Headers

GET /pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 15:09:18 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 286
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

838 B

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
838 B (838 bytes)
Hash
0ebe4be5303eae73aecf6db51f1a5805
2d2d95c626c881eb489f3223e059bff79acb352a
109903e9908d1ebdea0f0ab091f5d4261ff4a4fe245a10d78ee49112eb5ef085

HTTP Headers

GET /pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 14:31:09 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1598
x-check-cacheable: YES
content-length: 838
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

284 B

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x80, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
284 B (284 bytes)
Hash
0ed04a9d5f8f21eae855112f34baf299
1717ce4d9b9fdbdfd37ba7e0a4bda8195584119c
f83936624c82d08fa81e8f61faf647a523ddef6581a8982a94352d1f95d70d39

HTTP Headers

GET /pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 15:11:19 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 284
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

850 B

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
850 B (850 bytes)
Hash
3d2b755f75144fb4fbde3c7ef4028805
10dd0155c1dcbf5b432a7a3a91c8e4a2cdac567a
f6b176ae3c8c598c9ce90ad51188100b19c91707ae3d94614aec6cc3013d8420

HTTP Headers

GET /pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 05 Jul 2022 09:45:04 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 850
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

806 B

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
806 B (806 bytes)
Hash
b392d6d7ae4cab5c3d64003c0274d18d
f78c918c8cc604a8352b1ef194d683d62b4bd259
1d023ba2bdcbf8271e4a47166d9cb2f3ff9c38b4f6b4d5eee9b702ec04a90912

HTTP Headers

GET /pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 17:03:04 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 806
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto

23.36.77.11

200 OK

3.0 kB

URL HTTP/2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 305x305, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.0 kB (2964 bytes)
Hash
77109f696b31c66f3c62bfc34d2e4e75
26acea6b6d932f5c19eef3c0743336812b2be1db
91c10e129c8a3fb1255856d842f41aa1481e88f332393ec770442a9fe2b52a4b

HTTP Headers

GET /pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:35:53 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca58d-325ea"
server: Akamai Image Manager
content-length: 2964
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp

23.36.77.11

200 OK

146 kB

URL HTTP/2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1219x1219, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
146 kB (146024 bytes)
Hash
d0f525e9e5ad42e7c46f11185c2515ce
ad427c38c603c226fb9bce7120939a2297c5c11d
2a18f3e46d5ba1c4043e3e80c13af80f39dbb974f17fbbd338e124bb5b98062e

HTTP Headers

GET /pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:36:08 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca58d-325ea"
server: Akamai Image Manager
content-length: 146024
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

unpkg.com/share-api-polyfill/dist/share-min.js

104.16.125.175

302 Found

1.9 kB

URL HTTP/2
unpkg.com/share-api-polyfill/dist/share-min.js
IP
104.16.125.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.9 kB (1879 bytes)
Hash
9aedd6a89b14613bd1d62677e29fe1ce
1bcda88893fccd9d30e7b76aac277b27d039da5e
93342243569c94733a816cd3bc0dcabe960c00687b6a83d296bb34da963df18d

HTTP Headers

GET /share-api-polyfill/dist/share-min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /share-api-polyfill@1.1.1/dist/share-min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJW71H3FQWPEBEAQKBVCMJCB-ams
cf-cache-status: HIT
age: 295
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e672cbecb4f1-OSL
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp

23.36.77.11

200 OK

175 kB

URL HTTP/2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1219x1219, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
175 kB (174614 bytes)
Hash
eb5351a432f4b610f98abaeaab735715
c6e0ca6dbf41b771feb9bfe50e7a76c0c092fb4e
110628e7982b945acc406a4f37eb52f038949a5414f83dd2536f62b1a046b539

HTTP Headers

GET /pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:36:09 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca595-2b361"
server: Akamai Image Manager
x-serial: 1333
x-check-cacheable: YES
content-length: 174614
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp

23.36.77.11

200 OK

21 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
21 kB (21094 bytes)
Hash
dae06d6d313a2c75fff5cc5d5d861c98
49bc091ed018d97a12dbb321e2c245dd88bc1beb
af30b1b8944c7ea2a4371bb7cb7bfc39c3c4d05493779f15c6edb5c75f9988ca

HTTP Headers

GET /pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6204cf41-f116"
server: Akamai Image Manager
x-serial: 1811
x-check-cacheable: YES
content-length: 21094
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp

23.36.77.11

200 OK

18 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
18 kB (18362 bytes)
Hash
5e71b3b87bf7cbd9f87175f04203d404
de4dba7cbbae368b738610d3acfdd90095ffca7f
02ca88088e9fd9f89cb375c0ccc8a1cb8ae0c85b597f0f8d81a5f438304740be

HTTP Headers

GET /pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 18362
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp

23.36.77.11

200 OK

35 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
35 kB (34900 bytes)
Hash
842c7f0f8220213a5ad9767696ec2241
b8d8a2de66acda8cf2d9f11c72b6bb02c1b6cb56
9b97fe490aa99863f3820f41535872ebc702162ce6d81fe7b6a3a301e2e7dabf

HTTP Headers

GET /pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 34900
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp

23.36.77.11

200 OK

34 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
34 kB (34390 bytes)
Hash
a93d3bea20e9a3021be534c64695c20b
83f398f83a70d36e89b4b76c61341ae81501a2a6
ce92b07d316d39caee7b869c51011d88e9954ee652aac153c01bf133816c0868

HTTP Headers

GET /pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:42 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "623850ba-15420"
server: Akamai Image Manager
x-serial: 1131
x-check-cacheable: YES
content-length: 34390
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp

23.36.77.11

200 OK

18 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
18 kB (18158 bytes)
Hash
09e52f8ceea944f3c5a4935301232d1b
fa750a249b601f503881874e30c0b1b4f122ae4e
0339a055632c1f4cb159cb92f9c8d1d16c4788b12b1d34c3fadbaa748ebb8949

HTTP Headers

GET /pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 14
x-check-cacheable: YES
content-length: 18158
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js

23.36.77.11

200 OK

7.9 kB

URL HTTP/2
www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (21167)
Size
7.9 kB (7879 bytes)
Hash
eb946a1ba1512d5f682bb3c56e4b605b
3db5a8f8a71d121ca094eb7d9d59a4d4a68803da
f1532c7f926e45b5f2fd0cbf03764a6e88a94e4a62e569cb30eda7e7d5e5b5c0

HTTP Headers

GET /static/js/34.ef9c255e.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 30 Sep 2022 08:12:35 GMT
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: nginx-2
content-length: 7879
cache-control: public, max-age=26523177
date: Sun, 27 Nov 2022 09:40:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js

23.36.77.11

200 OK

3.9 kB

URL HTTP/2
www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (10379)
Size
3.9 kB (3918 bytes)
Hash
a6416b71a65318facc7a7b1167e08617
f57d810edce6ed606593b4dc2fe32bb2c639e51b
18244dc9bc8c62572dbe5170983f7d70192333f533087e5ea49c81e5d7ba7959

HTTP Headers

GET /static/js/27.8e6d67f3.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 05 Jul 2022 13:48:52 GMT
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: nginx-4
content-length: 3918
cache-control: public, max-age=19023590
date: Sun, 27 Nov 2022 09:40:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

storeapi.jetshop.io/

20.103.29.134

204 No Content

0 B

URL HTTP/2
storeapi.jetshop.io/
IP
20.103.29.134:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: storeapi.jetshop.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,channelid,content-type,country,culture,currency,name,preview,shopid,token
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.21.6
date: Sun, 27 Nov 2022 09:40:04 GMT
access-control-allow-headers: authorization,channelid,content-type,country,culture,currency,name,preview,shopid,token
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

www.fernerjacobsen.no/tryggehandel.js

23.36.77.11

200 OK

1.4 kB

URL HTTP/2
www.fernerjacobsen.no/tryggehandel.js
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
1.4 kB (1381 bytes)
Hash
4e08dfcf02be7a42b86133b304392860
42176873609a053c4c43f8d3cb8b49491c68d383
19681cd8037dc92d4442412461dbd01172732ec75b1dc4c91f5f4eae1cce1623

HTTP Headers

GET /tryggehandel.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
content-encoding: gzip
x-geoip-country: SE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
content-length: 1381
cache-control: public, max-age=18921499
date: Sun, 27 Nov 2022 09:40:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.findify.io/fernerjacobsen.no.min.js

143.204.55.105

200 OK

3.0 kB

URL HTTP/1.1
assets.findify.io/fernerjacobsen.no.min.js
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (6948), with no line terminators
Size
3.0 kB (3019 bytes)
Hash
e4d30aae9e85d9e9d122004f3fbf37c0
e13803b9fcbcb6862b49903f9a3bbef9648863db
72158422802f28a2d04ccdac4084372c244162ddc21a73204d1117a1a5834839

HTTP Headers

GET /fernerjacobsen.no.min.js HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 3019
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 00:10:14 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:39:02 GMT
Cache-Control: max-age=180
ETag: "e4d30aae9e85d9e9d122004f3fbf37c0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tvYGANfGY509k9m2SnF6tSexEorMCGCbfkIG_C_evkM8WxXEC4t3Fw==
Age: 64

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

storeapi.jetshop.io/

20.103.29.134

200 OK

44 kB

URL HTTP/2
storeapi.jetshop.io/
IP
20.103.29.134:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JSON data\012- data
Size
44 kB (43898 bytes)
Hash
06decbf5afc62fedcf1c88fb609ad930
7a0e0ee5339d88ac7090c24ac7d50db2fa1ed228
6d099f1166a2c123b166add6c3846443f06461dfe7836c4a0a2e9a27e7161f1f

HTTP Headers

POST / HTTP/1.1
Host: storeapi.jetshop.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
token: 359fd7c1-8e72-4270-b899-2bda9ae6ef57
shopid: fernerjacobsen
currency: NOK
channelid: 1
culture: nb-NO
country: NO
name: M1 - Norway
authorization: 
preview: false
Origin: https://www.fernerjacobsen.no
Content-Length: 2475
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 27 Nov 2022 09:40:04 GMT
content-type: application/json
access-control-allow-origin: *
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

assets.findify.io/fernerjacobsen.no-config.min.js

143.204.55.105

200 OK

19 kB

URL HTTP/1.1
assets.findify.io/fernerjacobsen.no-config.min.js
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size
19 kB (18816 bytes)
Hash
6ded6d2c16ef1b32351716fee42499d0
38eee2ca628d3c482fd70a5edea9429319df9b35
84ab28fbaa7a5695aecb197975c362e218459b2e0aff22674f3a16d2e89fe206

HTTP Headers

GET /fernerjacobsen.no-config.min.js HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 18816
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 00:01:22 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:37:32 GMT
Cache-Control: max-age=180
ETag: "6ded6d2c16ef1b32351716fee42499d0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ri5b-31wGf_h3wW1GjOk4dIYNrjEvAmyfI_tpRKYYUAaruHyWdoSrw==
Age: 154

assets.findify.io/fernerjacobsen.no.min.css

143.204.55.105

200 OK

9.5 kB

URL HTTP/1.1
assets.findify.io/fernerjacobsen.no.min.css
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
9.5 kB (9460 bytes)
Hash
9c0e9731e695bf2c9e2e99397691a74c
a43370dd2c82d643914047f20f8a8aead17c2aa1
b7489f13f71b21c1fea10bff1e9478939e31749009048eddc4690e399d53ad0b

HTTP Headers

GET /fernerjacobsen.no.min.css HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Content-Length: 9460
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 00:10:14 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:37:32 GMT
Cache-Control: max-age=180
ETag: "9c0e9731e695bf2c9e2e99397691a74c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QEUdbh_SmeszkuVd2M8ggruTdtxTwqK23lXHaBdUYJUkXDmy46SEYw==
Age: 154

www.googletagmanager.com/gtm.js?id=GTM-MRJM8V

142.250.74.168

200 OK

72 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MRJM8V
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (13960)
Size
72 kB (72427 bytes)
Hash
0c587a8a86fd08de7bb3406e01c57b31
5a0918041dfadd41c3c83bbd95d878e2d0cd23ee
8d1ebb2c9b0003c9fe9a969ac6ca0633ca7db25d0e2f50eb1aa032f8e92cf981

HTTP Headers

GET /gtm.js?id=GTM-MRJM8V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 09:40:05 GMT
expires: Sun, 27 Nov 2022 09:40:05 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72427
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js

151.101.85.229

200 OK

16 kB

URL HTTP/2
cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65060), with no line terminators
Size
16 kB (16343 bytes)
Hash
f7e644798249d3f27c8a2d55498007c8
25487b9384ccb8b8589887470fc806ee829a01d4
028f72fb6e67f7774197f433d65129e5714672a13d1a8d14417a9fb5d10ddd4b

HTTP Headers

GET /npm/@findify/bundle@7.1.31/dist/initializer.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.1.31
x-jsd-version-type: version
etag: W/"fe24-oC4SD0A6F8Lh8mx5Gh7/n1faWQs"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 27 Nov 2022 09:40:05 GMT
age: 3205053
x-served-by: cache-fra-eddf8230020-FRA, cache-bma1672-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16343
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js

151.101.85.229

200 OK

35 kB

URL HTTP/2
cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
35 kB (35282 bytes)
Hash
2aa520f805d334f1d7a895c84567e886
f7dd9f5fe92bcab94c926fd94ec212ee02865d01
b616be253c666055a81a1356ca811602091d0438396e4bda47003a46cdb43380

HTTP Headers

GET /npm/@findify/bundle@7.1.31/dist/879.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.1.31
x-jsd-version-type: version
etag: W/"1d0d1-TWyj79314TNq63j+SosSnaut57E"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 27 Nov 2022 09:40:05 GMT
age: 1655290
x-served-by: cache-fra-eddf8230065-FRA, cache-bma1672-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 35282
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
54efb6dea7238996233e2db433b34b00
b23690bee4b5ec4bb5e2599556501d3b16edbc5b
da2f5886f6727f1bfe73134488a82d22558eed71805a19352fcec3425a98d3a3

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "48CDA7F27797A0DB560CF8E312E1773B8FDC49EC"
Expires: Sun, 27 Nov 2022 20:00:00 GMT
Last-Modified: Sun, 27 Nov 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2008
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7709e67ce81ab50f-OSL

consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf

23.72.139.51

200 OK

32 kB

URL HTTP/2
consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf
IP
23.72.139.51:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Size
32 kB (31705 bytes)
Hash
696e11ea704a1a9043864196e1dd41ee
a322a1d9858541cb17a662d8267c1a86b91fc6c3
33a05733a663a3d87ea1275899038ec82a2824de58b8fd07f02c9852dbc56c43

HTTP Headers

GET /uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 22 Nov 2022 07:34:39 GMT
accept-ranges: bytes
etag: "db2e3fe144fed81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31705
cache-control: public, max-age=882
expires: Sun, 27 Nov 2022 09:54:47 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

gtm.adt313.net/jsTag?ap=1445461266

54.230.111.106

200 OK

12 kB

URL HTTP/2
gtm.adt313.net/jsTag?ap=1445461266
IP
54.230.111.106:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (11644), with no line terminators
Size
12 kB (11644 bytes)
Hash
19ef199b8d413f614f5a93f17dbc7d30
8f01d7fa0c41b98de140bb8d59de832ae4196b24
46e1dbd8b59cd17d996b75a459079239102e97471341a570c05fea906d4d9150

HTTP Headers

GET /jsTag?ap=1445461266 HTTP/1.1
Host: gtm.adt313.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 11644
access-control-allow-origin: *
x-traceid: 0fa36afd-90f9-4be1-91e7-2d15e7fc6549
date: Sun, 27 Nov 2022 09:26:43 GMT
cache-control: max-age=10800, s-maxage=1800
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4p5dHqJN2Ug23eBLQWESt6rddgIEBnKK1IUgZNyruVhMo6XaW7EM6Q==
age: 801
X-Firefox-Spdy: h2

consentcdn.cookiebot.com/sdk/bc-v4.min.html

104.110.3.72

200 OK

392 B

URL HTTP/2
consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP
104.110.3.72:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Size
392 B (392 bytes)
Hash
e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35

HTTP Headers

GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=29771517
expires: Mon, 06 Nov 2023 23:32:02 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2

consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false

23.72.139.51

200 OK

57 kB

URL HTTP/2
consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false
IP
23.72.139.51:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65499)
Size
57 kB (57201 bytes)
Hash
915d36fdd1e6cd541db111f0a3ec9c27
313a1c7bfb47c6b40e2017266c1397ee455153a4
12c30eae414e9c65621f7b7b89b8c7f356ad19bc6c3d7810027b79db42ddb794

HTTP Headers

GET /73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Sun, 27 Nov 2022 09:40:05 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 57201
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

api-v3.findify.io/v3/recommend/home-findify-rec-2

54.230.111.2

200 OK

0 B

URL HTTP/2
api-v3.findify.io/v3/recommend/home-findify-rec-2
IP
54.230.111.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/recommend/home-findify-rec-2 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-key
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 0
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
date: Sun, 27 Nov 2022 09:40:05 GMT
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DizYTr4p4Wy8vSN4dYWvcgzppfJZq8Jw3UJSPWxuSscU1IAoiOFlWw==
X-Firefox-Spdy: h2

api-v3.findify.io/v3/recommend/home-findify-rec-1

54.230.111.2

200 OK

0 B

URL HTTP/2
api-v3.findify.io/v3/recommend/home-findify-rec-1
IP
54.230.111.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/recommend/home-findify-rec-1 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-key
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 0
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
date: Sun, 27 Nov 2022 09:40:05 GMT
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rmg7v4UnwQNMCRpMOIh8FXxLDyTON86KmIQFli8pRg_MGgeShkYg3g==
X-Firefox-Spdy: h2

api-v3.findify.io/v3/recommend/home-findify-rec-1

54.230.111.2

200 OK

23 kB

URL HTTP/2
api-v3.findify.io/v3/recommend/home-findify-rec-1
IP
54.230.111.2:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (17427)
Size
23 kB (22805 bytes)
Hash
bbb261c4b670f39149c93e44c99444d4
5de3d79936a49dbeb9ac0fae2bd7e6507d074577
4e6854b1a940d9eb6d4ab39c6a268db688a718162851ee0f0953443686710480

HTTP Headers

POST /v3/recommend/home-findify-rec-1 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-key: 20e1a595-3c4d-4bc6-b038-2265aebf91c6
Content-Length: 203
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
date: Sun, 27 Nov 2022 09:40:05 GMT
etag: W/"449e-0nyCFCP+oOY4T86PtJNYdRQYx+I"
expires: 0
pragma: no-cache
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uUpRGOJYvq8dOkMNx27IsFOCCTF0UdLPpYfqDaE0MLP2qzIsYf8HbQ==
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055247--1.jpg?timestamp=1669540849

23.36.77.11

200 OK

36 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055247--1.jpg?timestamp=1669540849
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
36 kB (35578 bytes)
Hash
ffa8e33f5c684a9dc4e3069dfd6e21d8
d1f92ad5d71b2db0cb7bec43d2e3f42307cd7454
6562669911fa2b6c73ef89046ca6c1a4f7873cf8b244ceea597fbebf616f0935

HTTP Headers

GET /pub_images/large/8055247--1.jpg?timestamp=1669540849 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:33 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831de1-cb59"
server: Akamai Image Manager
x-serial: 1649
x-check-cacheable: YES
content-length: 35578
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8056389--1.jpg?timestamp=1669541803

23.36.77.11

200 OK

23 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8056389--1.jpg?timestamp=1669541803
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
23 kB (22882 bytes)
Hash
9c14e464a86657d4569e121e1dc5b011
4d21bcb0873612a8043dc6db83122e5e6ddce68c
81d26216819d628c8c0ffa1bf7f4e8c97d6af2c6404bf02e7314cb5764a9c08d

HTTP Headers

GET /pub_images/large/8056389--1.jpg?timestamp=1669541803 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383219b-a16e"
server: Akamai Image Manager
content-length: 22882
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055196--1.jpg?timestamp=1669539940

23.36.77.11

200 OK

34 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055196--1.jpg?timestamp=1669539940
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
34 kB (33520 bytes)
Hash
4431e970869af03b1e012a68fb901379
43791bc0fe1572fb4137b516f7262ff7f986e8c3
783eef8b32705b2a6f5020d8cd96e6d89612b2aea6e713501758ea6ac08c173c

HTTP Headers

GET /pub_images/large/8055196--1.jpg?timestamp=1669539940 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831a54-ba8e"
server: Akamai Image Manager
content-length: 33520
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055221--1.jpg?timestamp=1669540314

23.36.77.11

200 OK

42 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055221--1.jpg?timestamp=1669540314
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
42 kB (41904 bytes)
Hash
4cddab75a273cf1fb69dcac4bb77e607
5f392215437dc9c05c67de4ada49357a24e356c3
89311ebfadaa6aa4e848f61d5b2026a9a0fb67c3e0c0ef331b69014fae85a592

HTTP Headers

GET /pub_images/large/8055221--1.jpg?timestamp=1669540314 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:47 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831bca-d938"
server: Akamai Image Manager
x-serial: 143
x-check-cacheable: YES
content-length: 41904
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055243--1.jpg?timestamp=1669540634

23.36.77.11

200 OK

4.6 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055243--1.jpg?timestamp=1669540634
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.6 kB (4642 bytes)
Hash
09463234e8e3aa5e96200396d93a0d9e
0a387da17884b2522143fa665ff4292089a254ea
3feb012d1022a904e0cf3df069cc15d84e5985fc1e36104bd1f94420c1f2536b

HTTP Headers

GET /pub_images/large/8055243--1.jpg?timestamp=1669540634 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831d0a-4940"
server: Akamai Image Manager
x-serial: 251
x-check-cacheable: YES
content-length: 4642
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8024724--1.jpg?timestamp=1669480608

23.36.77.11

200 OK

40 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8024724--1.jpg?timestamp=1669480608
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
40 kB (39578 bytes)
Hash
98c55b5fb464f06e2b1de3ff65f67005
0af6a898639f57833095c945ab43401f4e96678e
b4f40914e759c1777098c6a2a587a2c4bd18305df7d6cd96c92564574c1f0236

HTTP Headers

GET /pub_images/large/8024724--1.jpg?timestamp=1669480608 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 16:20:56 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63823290-d6fb"
server: Akamai Image Manager
x-serial: 1761
x-check-cacheable: YES
content-length: 39578
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8056388--1.jpg?timestamp=1669541484

23.36.77.11

200 OK

4.7 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8056388--1.jpg?timestamp=1669541484
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.7 kB (4698 bytes)
Hash
f44ca0fd804f73119955a19b008d9491
f20026ba60d01f0bb140c7b0d3fc96fe39c31d60
dbe54a68bac747a8d2a48c7c7313dab53f1841a65ff43b4c4f33ca023e3e380d

HTTP Headers

GET /pub_images/large/8056388--1.jpg?timestamp=1669541484 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383205c-45c0"
server: Akamai Image Manager
content-length: 4698
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055116--1.jpg?timestamp=1669539640

23.36.77.11

200 OK

11 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055116--1.jpg?timestamp=1669539640
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
11 kB (10604 bytes)
Hash
ad0f06cb84c85f32a3621ebd8df36340
4fd101d9ad2e108dba82ae3a07141bfe88f82df8
a2f6536206034d597a29f52eef7e21c3f5ae03bcc22a37666bfc3df7ff412384

HTTP Headers

GET /pub_images/large/8055116--1.jpg?timestamp=1669539640 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831928-74f5"
server: Akamai Image Manager
x-serial: 220
x-check-cacheable: YES
content-length: 10604
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8055251--1.jpg?timestamp=1669540915

23.36.77.11

200 OK

51 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8055251--1.jpg?timestamp=1669540915
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Size
51 kB (50567 bytes)
Hash
9627ab9eca2465d904fec0a229bae9ef
e3bb01085c0652f5347e37e69627fcab073cb509
45bc1a50447b0208f669b3787887d61f9a1261912c43c54545d549dd565698f0

HTTP Headers

GET /pub_images/large/8055251--1.jpg?timestamp=1669540915 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831e23-108cc"
server: Akamai Image Manager
x-serial: 1932
x-check-cacheable: YES
content-length: 50567
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/8056391--1.jpg?timestamp=1669542044

23.36.77.11

200 OK

37 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/8056391--1.jpg?timestamp=1669542044
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Size
37 kB (37424 bytes)
Hash
d30ffe119085d4908adc0df19293b1ec
9d08d8de17bfd64b564045f6028e3edf23c4373f
acf83f54b696a871c429a2bbb21f73ab416125200e9aa4708d81de227738d8cf

HTTP Headers

GET /pub_images/large/8056391--1.jpg?timestamp=1669542044 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383228c-c50a"
server: Akamai Image Manager
content-length: 37424
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/1934440.jpg?timestamp=1636896987

23.36.77.11

200 OK

41 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/1934440.jpg?timestamp=1636896987
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
41 kB (40824 bytes)
Hash
285e7920cf2e5478dd8436be9dcb0273
438f1e078ca4e6cb1a9756fedf27597c4825fdf8
9be247ccaf1520ba2b94c9838ccdabe84373391360b9bc067017de90fdc9862e

HTTP Headers

GET /pub_images/large/1934440.jpg?timestamp=1636896987 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 14:28:21 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 557
x-check-cacheable: YES
content-length: 40824
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091

23.36.77.11

200 OK

8.3 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.3 kB (8286 bytes)
Hash
e69d35d422ab02359d7151096852b3ad
37784e93007bbd9f5931bc2ba3abc8930cdb5866
a06e237ada87e8c9e29a87ae1acf3d92d487fc10cb9d1dfe5799f8f653353398

HTTP Headers

GET /pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:06:17 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 8286
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216

23.36.77.11

200 OK

9.8 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.8 kB (9774 bytes)
Hash
a9d4f2577f5cf09930ac2f59dad6e881
92f1eca171e28b891294c73b49d7a9ba89ab967e
81d7aaea96ca99965022763321f69e4c9a5478e4378613fd51f1dc739dcedb33

HTTP Headers

GET /pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 09:38:39 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 9774
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/parajumpers1_2.jpg?timestamp=1644484174

23.36.77.11

200 OK

23 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/parajumpers1_2.jpg?timestamp=1644484174
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
23 kB (22984 bytes)
Hash
2650e867c9d32bae1e7eba562c5db879
16d06adf6aacb1a41af5287bf3f8b47e74603b62
ed8d4aa10e35e74eb7015ceb6a4bcc3e4f41515451b2d530332cdf8af5766a19

HTTP Headers

GET /pub_images/large/parajumpers1_2.jpg?timestamp=1644484174 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:15:26 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 22984
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/7650538-1.jpeg?timestamp=1662043760

23.36.77.11

200 OK

40 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/7650538-1.jpeg?timestamp=1662043760
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
40 kB (39788 bytes)
Hash
ac59e6e85822fcb6e6931f80d119b26e
7fcfcafe379879b1d59a8f48628d0cca44496b32
696dd7dd2bb1c443ef1d711dcfae79116e35ab7c1f700007ba06139e110bfe68

HTTP Headers

GET /pub_images/large/7650538-1.jpeg?timestamp=1662043760 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Thu, 01 Sep 2022 15:30:26 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 39788
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/7649957-1.jpeg?timestamp=1662655059

23.36.77.11

200 OK

86 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/7649957-1.jpeg?timestamp=1662655059
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Size
86 kB (85714 bytes)
Hash
d042813e624cdd20085a8a517e75d1cd
44879438eefab745464c6a881f9b6971ed5a255c
fb859b98bb35e4c62aca52a2887f4188d4eedd87fb01913ce1c6748d2dfdb736

HTTP Headers

GET /pub_images/large/7649957-1.jpeg?timestamp=1662655059 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Fri, 09 Sep 2022 01:46:22 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1973
x-check-cacheable: YES
content-length: 85714
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/7650055-1.jpeg?timestamp=1666284134

23.36.77.11

200 OK

33 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/7650055-1.jpeg?timestamp=1666284134
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
33 kB (32844 bytes)
Hash
2dd7276939cbbaf8be48e515ac2ce30e
d69a8334818805fffb437804c09a26e7fa995fea
9fd77a28a9a25994eac0318355225c6977715ee84025d5dcd2473ca4f07a370c

HTTP Headers

GET /pub_images/large/7650055-1.jpeg?timestamp=1666284134 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Thu, 20 Oct 2022 15:06:53 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 32844
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/3273083.jpg?timestamp=1636843838

23.36.77.11

200 OK

5.7 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/3273083.jpg?timestamp=1636843838
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.7 kB (5712 bytes)
Hash
166fb7bd6fd1a92868ade930768a3444
55fb6dd449ee59fca1e41aa21fa74454fa962e25
522616201cb28058740f93a1648397f6b9b94bbcfefb30a4f4995b8fffb68333

HTTP Headers

GET /pub_images/large/3273083.jpg?timestamp=1636843838 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:47:27 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 5712
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/7966257-1.jpg?timestamp=1666519383

23.36.77.11

200 OK

78 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/7966257-1.jpg?timestamp=1666519383
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Size
78 kB (78099 bytes)
Hash
048d9d353d9a725cd9eb0c9193d992c6
2284d4ecf4ee8446b15c75a09c42b72933d77196
20d3d273685ee47171176b53f0048431a85f6e22d15c6e7a41e2a3158f37dddc

HTTP Headers

GET /pub_images/large/7966257-1.jpg?timestamp=1666519383 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 23 Oct 2022 09:08:44 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 78099
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

www.fernerjacobsen.no/pub_images/large/7662296-1.jpg?timestamp=1666002610

23.36.77.11

200 OK

14 kB

URL HTTP/2
www.fernerjacobsen.no/pub_images/large/7662296-1.jpg?timestamp=1666002610
IP
23.36.77.11:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
14 kB (14464 bytes)
Hash
53e2c0759e6403f2ff3f314cd88f6e5a
f85a623d5dc1d64d431dd654f8764473f9615d23
1af0075f7423e6e8f8f2540a365ed8230cebc2645f06777d085aae1bb93a6b38

HTTP Headers

GET /pub_images/large/7662296-1.jpg?timestamp=1666002610 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 17 Oct 2022 10:03:55 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1408
x-check-cacheable: YES
content-length: 14464
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711

142.251.1.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711
IP
142.251.1.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.fernerjacobsen.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

281 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
281 B (281 bytes)
Hash
b1920d69805dd26034a60cc5ece3bd0c
d549e3ea9e94bad72e64010264017552e932adee
0347ac9cf5cab25ce166e4cd12ae0631beff58d46f0810c86b43edb89ee779ba

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 21:56:18 GMT
Expires: Sat, 03 Dec 2022 21:56:17 GMT
Etag: "d549e3ea9e94bad72e64010264017552e932adee"
Cache-Control: max-age=561970,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e67fe8070b65-OSL

api-v3.findify.io/v3/recommend/home-findify-rec-2

54.230.111.2

200 OK

8.7 kB

URL HTTP/2
api-v3.findify.io/v3/recommend/home-findify-rec-2
IP
54.230.111.2:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (30402)
Size
8.7 kB (8727 bytes)
Hash
f41c4b1ca9c8435181c44acf59a05771
94cbdd5a376f9cce834fa145013d3a014efc2369
a4b00ecb59b8eb9b46a25f27e4672c20a94c00042ebb9f059c43072997078371

HTTP Headers

POST /v3/recommend/home-findify-rec-2 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-key: 20e1a595-3c4d-4bc6-b038-2265aebf91c6
Content-Length: 203
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
date: Sun, 27 Nov 2022 09:40:05 GMT
etag: W/"75cf-iQm3uYpDj16BgzAcDHcLaT6d3XE"
expires: 0
pragma: no-cache
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mUrRLwssWN4hH0WpsnMhqX3CNckYuk0j2WJ9hY8W_yUow94x6OJavQ==
X-Firefox-Spdy: h2

tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1

213.155.156.188

307 Temporary Redirect

0 B

URL HTTP/2
tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1
IP
213.155.156.188:0
ASN
#1299 Telia Company AB

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/getUid?data=%7B%7D&callback=$d7_cb_1 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
date: Sun, 27 Nov 2022 09:40:06 GMT
location: https://tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1
set-cookie: guid=1.2533175231622677088; Max-Age=31104000; Path=/; Domain=.de17a.com; SameSite=None; Secure;
content-length: 0
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2

tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1

213.155.156.188

200 OK

63 B

URL HTTP/2
tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1
IP
213.155.156.188:0
ASN
#1299 Telia Company AB

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
8b94ce4bc6dad8a1f0c617bd6452cfe0
5102037fd0a91669fdd2172432348a25e7c0c143
5dff2c10803a82290da0f8c1cba1762d98a3e27f2fe23d83841091eb19bc36a6

HTTP Headers

GET /api/getUid;c?data=%7B%7D&callback=$d7_cb_1 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: application/json
content-length: 63
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2

tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2

213.155.156.188

200 OK

1.8 kB

URL HTTP/2
tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2
IP
213.155.156.188:0
ASN
#1299 Telia Company AB

File type
ASCII text, with very long lines (1778), with no line terminators
Size
1.8 kB (1778 bytes)
Hash
edabd7b5e18d40e251ccd950ce2b7dc9
70038afd560f64b5773488b6a349f80544d59477
dff9a0eeea6e77b0e2a75fcb3335abab9baa6fbc04432df665c3fc5734cf47b8

HTTP Headers

GET /api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: application/json
content-length: 1778
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2

sync.userreport.com/cs.gif?s=d3prj11&fk=-3653036240222597273

143.204.55.64

200 OK

43 B

URL HTTP/1.1
sync.userreport.com/cs.gif?s=d3prj11&fk=-3653036240222597273
IP
143.204.55.64:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cs.gif?s=d3prj11&fk=-3653036240222597273 HTTP/1.1
Host: sync.userreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Thu, 30 Jan 2014 09:18:47 GMT
x-amz-meta-cb-modifiedtime: Thu, 25 Oct 2012 12:28:09 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 19:21:37 GMT
ETag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e0a5mW8lqEGQfHBSWqCOkc0Q9MHOTZPyFtL6n0xZin9fWP3-iOFtuA==
Age: 51510

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
c6878ba0340a997632303de1b9d12b0a
9b85c079f50b95929d50626ed32ddaed256516e5
85eef2454de6ed2f8a4f994f1b17fcd9e2125fb38d64fbf390ed3e85788152e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5768
Cache-Control: max-age=93085
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381e28b-116"
Expires: Mon, 28 Nov 2022 11:31:31 GMT
Last-Modified: Sat, 26 Nov 2022 09:55:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278

dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006

172.64.154.237

302 Found

0 B

URL HTTP/2
dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006
IP
172.64.154.237:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: dsum.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-length: 0
location: /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1
cf-ray: 7709e6854e42b4f4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y4MwdvlkeYAPwlVG3ei1FQAA; Path=/; Domain=casalemedia.com; Expires=Mon, 27 Nov 2023 09:40:06 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1836; Path=/; Domain=casalemedia.com; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1836; Path=/; Domain=casalemedia.com; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4swfDghLYPmXyjNWuYVJ8o2xAMqklnUlhmWSaH0gDhXA4NH2R7eEFmFIR41Dv1j6KldocfZ629uzVqIVJmFRrDtMutNkW%2BMqqPvmCQ4XZAYvdiN4RULyU28QEkd1e0Vl4oiXnck"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1a05b0b8812c894b56cd8dad83d15702
9256eced3d878a58f6e5cd99eaef24a312e43d5b
7bd6436c53dc22deaedc8fcbb678a619b472c089c1d343dd887811e3088120d4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2751
Cache-Control: max-age=88935
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381de1e-1d7"
Expires: Mon, 28 Nov 2022 10:22:21 GMT
Last-Modified: Sat, 26 Nov 2022 09:36:30 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edb56005298645f73e2f277aaf246dfa
a1f94910fb201ba2b02558b65e70c82b942b1e0c
537b0984a081827db03f86ea0999643c681f9b88a632d809602c80b2bff981b1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4827
Cache-Control: max-age=111166
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "63822cd9-1d7"
Expires: Mon, 28 Nov 2022 16:32:52 GMT
Last-Modified: Sat, 26 Nov 2022 15:12:25 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

status.geotrust.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1d5d1af46a4b6353b7788da51ca03fa0
e4481a65a88110abe2a99abfab2a7a8e16524b1b
882c37f62fd31e710a692402bb57c15ce430296f3f77fb4bf518ad20f720e8fa

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4802
Cache-Control: max-age=143577
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6382ab8d-1d7"
Expires: Tue, 29 Nov 2022 01:33:03 GMT
Last-Modified: Sun, 27 Nov 2022 00:13:01 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
c6878ba0340a997632303de1b9d12b0a
9b85c079f50b95929d50626ed32ddaed256516e5
85eef2454de6ed2f8a4f994f1b17fcd9e2125fb38d64fbf390ed3e85788152e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5768
Cache-Control: max-age=93085
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381e28b-116"
Expires: Mon, 28 Nov 2022 11:31:31 GMT
Last-Modified: Sat, 26 Nov 2022 09:55:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278

dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1

172.64.154.237

200 OK

43 B

URL HTTP/2
dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1
IP
172.64.154.237:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1 HTTP/1.1
Host: dsum.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif
content-length: 43
cf-ray: 7709e685aebbb4f4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tEbeI0yETz4t2%2FRQ9lihinmVk%2BlUdxADYeG4ntRi7cHGWSs54cwppXjjHUdQucdv2YqCxngATzOMLPUZspUk%2BgBiDyqmWxpt4c4DkCvOnzNgVorXGmD%2F7pn57fMnIV6SK5C9qjfa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273

185.64.190.80

200 OK

42 B

URL HTTP/2
image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273
IP
185.64.190.80:0
ASN
#62713 AS-PUBMATIC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_336=5844--3653036240222597273; domain=pubmatic.com; secure; expires=Tue, 27-Dec-2022 09:40:06 GMT; path=/
PugT=1669542006; domain=pubmatic.com; secure; expires=Tue, 27-Dec-2022 09:40:06 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2

pixel.advertising.com/ups/55955/sync?uid=-3653036240222597273&_origin=1

3.126.56.137

301 Moved Permanently

363 B

URL HTTP/2
pixel.advertising.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
IP
3.126.56.137:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
363 B (363 bytes)
Hash
9dcbac2402f94cecadf50ffa3efef9c9
137807fd41c10433ea3a900dc263208b4bb23efe
8af9070fa39ec6e045daffd195814567bb65198b3cacfe893a0f753ec25e0eb3

HTTP Headers

GET /ups/55955/sync?uid=-3653036240222597273&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 09:40:06 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBHYwg2MCEF7Y0uqkMGKMjATDpmpREJQFEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAsWkG4kaK9kB1zTW5g8QZ0w; Expires=Mon, 27 Nov 2023 15:40:06 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 363
X-Firefox-Spdy: h2

sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1

185.94.180.125

302 Found

0 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /partner?adv_id=7326&uid=-3653036240222597273&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=79fa2123-6e37-11ed-bd4d-1586fee60106; expires=Sun, 25-Dec-2022 09:40:06 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106
X-fe: 44
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106

185.94.180.125

200 OK

43 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e

HTTP Headers

GET /partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=79ff177d-6e37-11ed-a8fb-141922060506; expires=Sun, 25-Dec-2022 09:40:06 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 64
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
85811b85660f9f939572dbb02365816e
69ef6cb29e40e30c2082c48c5cd7257e2abe6dd5
33f659b95b43a9b469c04dbea7aa2f52fe9bfefad49d1ee08d06b35c1e4926df

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145585
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6382b13a-1d7"
Expires: Tue, 29 Nov 2022 02:06:31 GMT
Last-Modified: Sun, 27 Nov 2022 00:37:14 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 76RLMj02wf6Wi5bbr-B2GbUUYvF-uj5PRZ83WbOx1MTAihYgA9YQew==
Age: 5357

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1bad111d8826d604f4f91fc3751b52a6
a19d6631d19ccb7a2ba59c908b856731431c4c69
3a09243d61d38fec95b99609036b64d08a8b7487ba2217d27543ce7cd5b398ce

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102457
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "63820586-1d7"
Expires: Mon, 28 Nov 2022 14:07:43 GMT
Last-Modified: Sat, 26 Nov 2022 12:24:38 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wHdD56y2SeCra1wgU4V8Pkln7KxV69dENQUHusJnWeInIZH9uVgApw==
Age: 6185

ad.360yield.com/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006

18.193.206.58

302 Found

0 B

URL HTTP/2
ad.360yield.com/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
IP
18.193.206.58:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
set-cookie: tuuid=873d2b27-860a-4002-ae1e-6f0fad4c86cc; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1669542006; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2

synchroscript.deliveryengine.adswizz.com/syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273

54.76.106.23

200

0 B

URL HTTP/1.1
synchroscript.deliveryengine.adswizz.com/syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273
IP
54.76.106.23:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273 HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Date: Sun, 27 Nov 2022 09:40:06 GMT
Instance-id: i-073347e74dc5a9c9d
Set-Cookie: OAID=68df3430ac2b84811edf391e6f03daf0; Domain=.adswizz.com; Expires=Tue, 27-Dec-2022 09:40:06 GMT; Path=/
X-Adswizz-request-id: 7a0889f0-6e37-11ed-afdd-06fefcf26e3f
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 0
Connection: keep-alive

ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006

18.193.206.58

200 OK

43 B

URL HTTP/2
ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
IP
18.193.206.58:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
81ac539811e7c75c3e01f8d993ab2021
494af45d44a441ba3330fc087cf2718d058ff7ea
729fb0618f5b64b2f7393533325fd19887e15c642ae1dbff78c410f0add526ae

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 23:23:23 GMT
Expires: Thu, 01 Dec 2022 23:23:22 GMT
Etag: "494af45d44a441ba3330fc087cf2718d058ff7ea"
Cache-Control: max-age=394395,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e685cda60b65-OSL

ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1

3.126.56.137

302 Found

0 B

URL HTTP/2
ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
IP
3.126.56.137:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ups/55955/sync?uid=-3653036240222597273&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:07 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHcwg2MCEBL2nfWTqx9Qp8PzJz9H2pAFEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAitVBvkswBWOuext18sUGqw; Expires=Mon, 27 Nov 2023 15:40:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true

3.126.56.137

204 No Content

0 B

URL HTTP/2
ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true
IP
3.126.56.137:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 27 Nov 2022 09:40:07 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHcwg2MCEHJZikqDkznT3KXweF9w_Q8FEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAplnJpf6MpHtEfbNWYu4Ns8; Expires=Mon, 27 Nov 2023 15:40:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ea101f7e711eb66ba76f9e395ce3b919
5be1c6a23b5e6059f4d882148c84eb941c7068ec
0f874cf2a25b7f913badd906ae5deb8429f8eb135973275ed5314162b37c7b31

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 13:55:55 GMT
Expires: Sat, 03 Dec 2022 13:55:54 GMT
Etag: "5be1c6a23b5e6059f4d882148c84eb941c7068ec"
Cache-Control: max-age=533146,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e6878f070b65-OSL

sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176

213.19.147.44

200 OK

43 B

URL HTTP/2
sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176
IP
213.19.147.44:0
ASN
#26120 RHYTHMONE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b

HTTP Headers

GET /usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:07 GMT
content-length: 43
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&currency_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4

216.58.207.194

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&currency_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2479), with no line terminators
Size
1.1 kB (1061 bytes)
Hash
3eae4397f18afdb17bbf75d6b27f2536
98684cbe930f16fc4c534f88efebad14d23ba296
f46587cb68badf605de58211a8b832ee8269a2288106dcb5ecc7fafd0556b45c

HTTP Headers

GET /pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&currency_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1061
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 09:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

usermatch.targeting.unrulymedia.com/usermatch/delta/-3653036240222597273

213.19.147.44

302 Found

0 B

URL HTTP/2
usermatch.targeting.unrulymedia.com/usermatch/delta/-3653036240222597273
IP
213.19.147.44:0
ASN
#26120 RHYTHMONE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /usermatch/delta/-3653036240222597273 HTTP/1.1
Host: usermatch.targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://sync.1rx.io/usersync/delta/-3653036240222597273
X-Firefox-Spdy: h2

zizr.id/integration/ferner-jacobsen.js

13.107.227.67

200 OK

0 B

URL HTTP/2
zizr.id/integration/ferner-jacobsen.js
IP
13.107.227.67:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /integration/ferner-jacobsen.js HTTP/1.1
Host: zizr.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-store
content-type: application/javascript
content-encoding: br
last-modified: Mon, 21 Nov 2022 09:59:10 GMT
accept-ranges: bytes
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-credentials: true
x-azure-ref-originshield: 0simDYwAAAAB3xJ3rtMD9T6yvT5Sh9bNiQU1TMDRFREdFMTgxNwA3ZGM2M2E4Mi1kOGVlLTQ3YTItYTA2Ny0wMWViNDQ1YjRiZTY=
x-azure-ref: 0czCDYwAAAAC5wBfkegdaR7oUfo+pyJ2wT1NMMjMxMDUwMjAzMDI1ADdkYzYzYTgyLWQ4ZWUtNDdhMi1hMDY3LTAxZWI0NDViNGJlNg==
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

rsms.me/inter/inter.css

172.67.223.193

200 OK

0 B

URL HTTP/2
rsms.me/inter/inter.css
IP
172.67.223.193:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zizr.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 04 Oct 2022 15:53:21 GMT
access-control-allow-origin: *
etag: W/"633c56f1-1490"
expires: Fri, 25 Nov 2022 05:52:05 GMT
cache-control: max-age=14400
x-proxy-cache: HIT
x-github-request-id: 0821:8122:54D276:576B89:633C5749
via: 1.1 varnish
age: 27
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664899213.652545,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 30b439f3b7737e36e775d6bfcb26bf5286f95667
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prHPPNtUizUqNWtfcu6pq6pPJmYAXbaxBL%2BrnAZtG7jburTp7tMi5P4iaeB17u%2Fjq%2F1%2BPmyg4sboQTtXkBTg8r5ZWHj35b2PL32TWeHk8yFm0LeGlqWsOEwt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7709e6732f58b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

zizr.id/integration/ferner-jacobsen.css

13.107.227.67

200 OK

0 B

URL HTTP/2
zizr.id/integration/ferner-jacobsen.css
IP
13.107.227.67:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /integration/ferner-jacobsen.css HTTP/1.1
Host: zizr.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-store
content-type: text/css
content-encoding: br
last-modified: Mon, 21 Nov 2022 09:59:10 GMT
accept-ranges: bytes
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-credentials: true
x-azure-ref-originshield: 0By+DYwAAAAAExVTG93IiR6lByQJWbK11QU1TMDRFREdFMTkxOQA3ZGM2M2E4Mi1kOGVlLTQ3YTItYTA2Ny0wMWViNDQ1YjRiZTY=
x-azure-ref: 0czCDYwAAAAD3u+S9TGTxRI7DukmJvG6KT1NMMjMxMDUwMjAzMDI1ADdkYzYzYTgyLWQ4ZWUtNDdhMi1hMDY3LTAxZWI0NDViNGJlNg==
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2

sync.1rx.io/usersync/delta/-3653036240222597273

213.19.147.44

302 Found

0 B

URL HTTP/2
sync.1rx.io/usersync/delta/-3653036240222597273
IP
213.19.147.44:0
ASN
#26120 RHYTHMONE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /usersync/delta/-3653036240222597273 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:07 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-5acba36e-dc10-4e11-be84-0d5a40685fcf-003%22%7D; path=/; expires=Mon, 27 Nov 2023 09:40:07 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176
etag: RX5acba36edc104e11be840d5a40685fcf003
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations