r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17239
Expires: Sun, 27 Nov 2022 14:27:17 GMT
Date: Sun, 27 Nov 2022 09:39:58 GMT
Connection: keep-alive
applesoftupdate.com/
216.245.213.77200 OK 480 B IP 216.245.213.77:0
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (480), with no line terminators
Hash 4e1af033e4604a57241c433f15a49683
152103419a51e05bc3f679376bc3bba3bdd9df9f
a4fe596be3759c6fd62a1d4d3f93628ab4d10aeb7342209035f7a14552251667
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 480
content-type: text/html; charset=utf-8
date: Sun, 27 Nov 2022 09:39:58 GMT
server: nginx
set-cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612; path=/; domain=.applesoftupdate.com; expires=Fri, 15 Dec 2090 12:54:05 GMT; max-age=2147483647; HttpOnly
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3429
Cache-Control: max-age=92899
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:39:58 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:28:17 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 09:19:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1237
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4764
Expires: Sun, 27 Nov 2022 10:59:22 GMT
Date: Sun, 27 Nov 2022 09:39:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eppfpe6SMXpUtemDACloq0HwllPRs9uuApPlZjc9mcco3gv2pmmvlFWw0eg+UtKpkDhPVOIFETc=
x-amz-request-id: YX35FZ13738PT3J3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 08:44:34 GMT
age: 3324
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:39:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
applesoftupdate.com/favicon.ico
216.245.213.77404 Not Found 9 B URL HTTP/1.1 applesoftupdate.com/favicon.ico
IP 216.245.213.77:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://applesoftupdate.com/
Cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sun, 27 Nov 2022 09:39:59 GMT
server: nginx
applesoftupdate.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612
216.245.213.77302 Found 11 B URL HTTP/1.1 applesoftupdate.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612
IP 216.245.213.77:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
Analyzer Verdict Alert quad9 Sinkholed
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTU0OTE5OCwiaWF0IjoxNjY5NTQxOTk4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2xtZjZncjQ1dDI2cDc4NXMxODBoY2QiLCJuYmYiOjE2Njk1NDE5OTgsInRzIjoxNjY5NTQxOTk4NDQ4NjI0fQ.HqXD2CsVsllIhxslUyN8EZDWU0dHK0mK5oV0jMuwHYI&sid=750dbd3a-6e37-11ed-839e-85f68cce7612 HTTP/1.1
Host: applesoftupdate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://applesoftupdate.com/
Cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sun, 27 Nov 2022 09:39:59 GMT
location: http://dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
server: nginx
set-cookie: sid=750dbd3a-6e37-11ed-839e-85f68cce7612; path=/; domain=.applesoftupdate.com; expires=Fri, 15 Dec 2090 12:54:06 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 09:11:12 GMT
cache-control: public,max-age=3600
age: 1727
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
3.208.247.235200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bff9e278bf323b9bd14f8944b4051405
1cdca436c4dd921227d24498813a88a1c2eabcbe
0fa51f9f1fc566d96d5358c17ab76f654207db83f419e75006f46d7c19003f82
GET /zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://applesoftupdate.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: HWzayRGX
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6015
Cache-Control: max-age=90427
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:39:59 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:47:06 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.208.247.235200 356 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c61d8ac8208eb0a2f44b44341c97e33b
45c015ce1fd9796bf9825c816430a7eaa51cc245
6edf0cdb966f91cb42b22372110bbcb8d67d02fa12be2612a2719abc3a48667e
GET /zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/754d99f8-6e37-11ed-b3ad-129b07242de9/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ALZgEdAD
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0721a5029c688e1afa783e516714e508
9ca9e1f30f86ac8a6d5e15929ebe9d2b23e4face
6e445043f1de83d057ff0364830bd096be0be52e25427713673056040369b0b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E445043F1DE83D057FF0364830BD096BE0BE52E25427713673056040369B0B6"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14918
Expires: Sun, 27 Nov 2022 13:48:37 GMT
Date: Sun, 27 Nov 2022 09:39:59 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yn55iJkjajyXpsY39ML9dA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WlHF7kO6t3qSzsMtivqp4k6wdcs=
clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj
78.46.197.88200 OK 357 B URL HTTP/2 clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj
IP 78.46.197.88:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (357), with no line terminators
Hash d89795f1fd4593c56eb0726ac94cfc09
2f6ac252edb54c9a6c254c0690edfa3693c105f4
1d0e633c1d0d241514819821ab335d97374b05e2e57fddeb761a32b64f427638
GET /s/r6?s=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj HTTP/1.1
Host: clever-redirect.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: fde7d8409902205b0ea4c877b43ca40b=f819c981f8d4a4fc68abc2833b2998e329ea2393fb2c7bb5cfdd73e997a8f952a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22fde7d8409902205b0ea4c877b43ca40b%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Mon, 28-Nov-2022 09:39:59 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 357
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 09:39:59 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2
dipaka-ead.com/favicon.ico
3.208.247.235404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=754d99f8-6e37-11ed-b3ad-129b07242de9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Sun, 27 Nov 2022 09:39:59 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: VTBPJNcR
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2fc5d0e264068b334c44f627b7581cb0
b13ae71a3e2727587f2b2b212ced135feb6703e0
748d34be18b9cd25ddb8f887e7de9e7aed70ce8501962796ebc302ae9075ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "748D34BE18B9CD25DDB8F887E7DE9E7AED70CE8501962796EBC302AE9075EC91"
Last-Modified: Sat, 26 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7946
Expires: Sun, 27 Nov 2022 11:52:26 GMT
Date: Sun, 27 Nov 2022 09:40:00 GMT
Connection: keep-alive
lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf
5.9.110.29200 OK 616 B URL HTTP/1.1 lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf
IP 5.9.110.29:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document, ASCII text, with very long lines (616), with no line terminators
Hash 84629a270eed0a4eea656e9cff2e4400
3f046d8cc2efde0856a9420e0e40989f0c79408a
96d4802b454e3a49f193aa48847a2f0913a4d9dab1f6dcdf93b419743efc5c7d
GET /s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=fernerjacobsen.no&s1=623619497&s2=badious-buzzard&s3=romeo-vaw-vzyo96gmgj&s5=cf HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:00 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Set-Cookie: 7af24556e0c4f4a7848a998f9fd668a3=94415162b60a25a0f175e81768509183ed6713772fd807ec870fd8232836f9a6a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%227af24556e0c4f4a7848a998f9fd668a3%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Mon, 28-Nov-2022 09:40:00 GMT; Max-Age=86400; path=/; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410
5.9.110.29200 OK 544 B URL HTTP/1.1 lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410
IP 5.9.110.29:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (544), with no line terminators
Hash d4ca9071e8f4ba9d4f5eb0b21076b1fd
e2ccbdd86ccd9e9a46a8b5fc67c9e901f78944d4
dd45a835bbe043d838f41015308a40158ca8a2314c94981bc300d63736a6880c
GET /s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%2Fdeeplink%3Fe%3DbEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0%3D%26i%3Dp3Z8aRd7nPXGrVVF%26placementId%3D36063faf139ebaaeb43822d9e77e0549&h=e80f9e5b3082b1432cb97f64ffa1a410 HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 7af24556e0c4f4a7848a998f9fd668a3=94415162b60a25a0f175e81768509183ed6713772fd807ec870fd8232836f9a6a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%227af24556e0c4f4a7848a998f9fd668a3%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:00 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 204b24e9ac60abc06a19386cb6571322
dd66f37e6d236ee6b0f7c9b54ef64c715da2942b
bb6992d0c6858671c529cfc4dc5d7368f7dac927e3ebed6a402812a007b665d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BB6992D0C6858671C529CFC4DC5D7368F7DAC927E3EBED6A402812A007B665D9"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1144
Expires: Sun, 27 Nov 2022 09:59:04 GMT
Date: Sun, 27 Nov 2022 09:40:00 GMT
Connection: keep-alive
api.yadore.com/v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549
88.99.112.2302 Found 0 B URL HTTP/2 api.yadore.com/v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549
IP 88.99.112.2:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/r/deeplink?e=bEgzczg5NDhxaFdWUk1hcGZKWC9KZ3dMV3pJRXhCdDhMQ29iWWJ6OC8ydkQ0VThobTdRUGttRG5IbFBaSGM4aHFBVXF1bVNUSDdkcUlhbS90ZWZJbWtzT3pHMlNtVUF2bUJYbDNrMEdlREFQUHplWEVNZXNTNHdHRTI2NXdPVTlqRnc5SUtVbDdRTExzemQzMmxMS05TNHVIb284Wld4UnBsZGlzZHUxanEwK2ZsYz0=&i=p3Z8aRd7nPXGrVVF&placementId=36063faf139ebaaeb43822d9e77e0549 HTTP/1.1
Host: api.yadore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 09:40:00 GMT
location: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
server: nginx
x-powered-by: PHP/8.0.25
content-length: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5124
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:40:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 28393
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 42500
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f80a9a9b55da31c98663e157dde74a19
26b8dd82140c0db021048e11bff65a391dc6b444
680c39e4ea1d784db9831958942a64f3e83618dc443c8bcaa34223d85bb5b926
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: 4a1b13ad-9455-401d-a914-c1ada2191977
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTHRroAMFR8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-4e5d630b23cdeb2e4b6d75d1;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D24B6xoLZ2nu1NdlMU5TgJSc-DfzD6vrMzgU3s6tAiAsUuzBb_t89Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 08:21:28 GMT
age: 4713
etag: "26b8dd82140c0db021048e11bff65a391dc6b444"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e615cdc2e330b5cf76435abce9aa631a
71f737c3cee7766494157cd6491ce247a785c09e
853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: f00ac8bd-6466-4c92-9b99-0e71b4b2345c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr4ENtoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-0e3a57932987e29521388dd7;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ntfumip5IjOlyoe6ASlwJ1PjPLN1yZHkK_iiDDKfmMCyI__PrrGVMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 11:33:57 GMT
age: 79564
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9de86e0161ef1255306ddfce1c2549d7
f77ff5378766c6b14125de0e003b21f34726672b
7db14b31e7e2d882eb446bd6056ad9e8eed6e1581837a6d54d2e0d26aa2600bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4023
x-amzn-requestid: e9fe84db-d488-4ec7-81e6-c819bb625944
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b44BuHsmIAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d3a4-54fbd7892170110e4bafc899;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:13:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GYi18tS1H9gOh6y9rQGwRx9VANq4dYJ_vJIpMD0kWIXFVNSif-sxXA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:05:29 GMT
age: 41672
etag: "f77ff5378766c6b14125de0e003b21f34726672b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 42504
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
143.204.55.124200 OK 32 kB URL HTTP/2 api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
IP 143.204.55.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Hash 9e2306b432bc5bbbf53b293355e4baf7
5907f48fb1ec7392bb05e9a940b4f2c60d43a6d0
895ad7f1a5ee9f0d602867ba68e0949642185647b73d03dc4fdd4baf0e75c4de
GET /publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 31981
x-gravitee-transaction-id: 9a5e57b7-ea60-4cfc-9e57-b7ea601cfc23
x-gravitee-request-id: 9a5e57b7-ea60-4cfc-9e57-b7ea601cfc23
leadid: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183
clickid: 107698148_1669542000645_5617899
country: no
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
set-cookie: datadome=0qq3bxmFbhsZYtsGWsCvimi-ZGOnqrBHaELJxcgOaxqkCZaZ9f9ifRBREh~CphZeUB3iH9PsiFFIPo4AZ8ukI~3ZVyPwS4aFU2vZVOgEgeGw6sx~Ne5M4rC5HQl736Nv; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=Lax; Path=/; Domain=.kelkoo.net; Secure
kelkooID=a4c6294-184b8753805-1a94f1; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
x-datadome: protected
request-time: PT0.866498S
x-robots-tag: noindex,nofollow
referrer-policy: origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
date: Sun, 27 Nov 2022 09:40:01 GMT
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VtJnF-ioL4hk4xA-OaUcHCTA4pzbk6jNgmOUQFi0AkmbtKsMB70SQQ==
X-Firefox-Spdy: h2
dd.kelkoogroup.net/tags.js
54.230.111.104200 OK 43 kB URL HTTP/2 dd.kelkoogroup.net/tags.js
IP 54.230.111.104:0
File type ASCII text, with very long lines (65432)
Hash 1e9601b9f2fcd0d1d742e87fd046749c
88431bfdad7d8be4cf62396a57aebcec0de09827
4bcdd319b49ac3e4683e774aefe69157100f9ebee3bc428e425cfc93a7da9feb
GET /tags.js HTTP/1.1
Host: dd.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 43164
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Thu, 17 Nov 2022 15:19:16 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 615f944336054ae07b8e7c415ddbad44.cloudfront.net (CloudFront), 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
date: Sun, 27 Nov 2022 09:20:05 GMT
cache-control: max-age=3600, public
expires: Sun, 27 Nov 2022 10:19:58 GMT
etag: "33bf8-5edac1cc94a7f-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: 7QX41ZPfsEdrcrwCCmMjNBZcLTIQdOwK_6kscQRIwWBu1B8f9s2joQ==
age: 1203
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42d19e502650716229ee612769e3fc14
2812ab691f84a638f5cbcdf16e7fc606c819acb1
c19862f9090eadde6ca024265a2fa6cb1def302c0d00473840738fe63a902fb5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5176
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:01 GMT
Last-Modified: Sun, 27 Nov 2022 08:13:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42d19e502650716229ee612769e3fc14
2812ab691f84a638f5cbcdf16e7fc606c819acb1
c19862f9090eadde6ca024265a2fa6cb1def302c0d00473840738fe63a902fb5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5176
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:01 GMT
Last-Modified: Sun, 27 Nov 2022 08:13:46 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff43751c4e6ff4b34703f59267ef2462604215f3b82ef3aee3de3a3f7ef30bb64da41afc22d885d113524b5dfa0b169c1908ebf7797342134faaac669d350e9e039f742fca50909a2322b2e05ddf4593454dc54281b623b90d7bdf2100a9f3039b207b0780e2ca5573135732b8448b81aa0fccc6473146e96bb7b5a3f497838451f4e5fc55a1b425b8e26d2f0f1cd9a0fd251ce702184e7384b80e4d6c9159d963f3025f128064fc695ec57550bfec443b13593d8fd2111859bfec0cac5eaa21f728208d1f7ddb6fb281646400b63c1df7cc0f4348da03cf8ea49e655cdb9bc5dc33aec5ed265dfac16bb156b879c90c9c2495a2fd8e5301589346cb68ffd0910dbfb2e91edda7ac6807339dcaede825fd4cf36a4fdfbee86e008b07b9790b261aff7&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
95.211.116.27200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
IP 95.211.116.27:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:01 GMT
Request-Time: PT0.001596S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: image/png
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=94
Connection: Keep-Alive
no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
95.211.116.27200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899
IP 95.211.116.27:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:01 GMT
Request-Time: PT0.003548S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=89
Connection: Keep-Alive
api.kelkoogroup.net/favicon.ico
143.204.55.124404 Not Found 40 B URL HTTP/2 api.kelkoogroup.net/favicon.ico
IP 143.204.55.124:0
File type ASCII text, with no line terminators
Hash 93eb2a33fca1bed122be55e52dbcb18b
f75a657d84bec6cc3f180ac194af3d21da9fe7bf
d08874f7931c8d35c1ca54fcc0de50c9a267a0036c61626bc420610186bbacfa
GET /favicon.ico HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Ffernerjacobsen.no%2F&custom1=30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/plain
content-length: 40
date: Sun, 27 Nov 2022 09:40:01 GMT
x-gravitee-transaction-id: 1300b1c6-e03f-46ed-80b1-c6e03f66ed5f
x-gravitee-request-id: 1300b1c6-e03f-46ed-80b1-c6e03f66ed5f
x-cnection: close
x-cache: Error from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1-1bWgOp9SFqU1ZJ2rwZP2NqkACVsML9hXd4m_aLmSYl_-qZ0ho4VQ==
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono
95.211.116.27303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono
IP 95.211.116.27:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&clickId=107698148_1669542000645_5617899&url=https%3A%2F%2Ffernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-184b8753805-1a94f1; _ga=GA1.2.561703965.1669542001; _gid=GA1.2.533635020.1669542001
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 303 See Other
Date: Sun, 27 Nov 2022 09:40:01 GMT
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183
clickId: 107698148_1669542000645_5617899
country: no
Location: https://fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.025332S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=2tT-_sV~EUOiXUX-DgQXPy6_fXyc9mwaMoO9aDQqXbCgL5d849HnLA~NVeIfFSizuxxKEv7WcCGD_ag2rxSjiGIcOiP~2F5Lm5hdi6EF_cS143zD7ZN4Rnw3VUiTywxi; Max-Age=31536000; Expires=Mon, 27 Nov 2023 09:40:01 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=95
Connection: Keep-Alive
Content-Type: text/plain
fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
23.36.77.11301 Moved Permanently 0 B URL HTTP/2 fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1
Host: fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
date: Sun, 27 Nov 2022 09:40:01 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Ffernerjacobsen.no%252F%26custom1%3D30dd4894b5e83f5b1bc4d24e6730f100802e97ded785c0d579f0df36a8b2a945%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F%7C100515931%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Ferner%20Jacobsen&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=561703965.1669542001&tid=UA-168544891-6&_gid=533635020.1669542001&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669542001507_1570183&cd3=100515931&cd4=a4c6294-184b8753805-1a94f1&cd5=&cd6=%7C100515931%7C&z=1868562118 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://api.kelkoogroup.net
date: Sun, 27 Nov 2022 09:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
23.36.77.11200 OK 275 kB URL HTTP/2 www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
Size 275 kB (274759 bytes)
Hash 3f978b42eb891cb214fff369dca100e8
d4f0a3aa1667d4390d1b94210b385a63773c5851
07e05238396434ce9cecadbc13cd144b82e5b1fdf3c96025cf6521fa737540e7
GET /?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
content-type: text/html
link: </static/css/13.style-9a13872d.css>; as=style; rel=preload, </static/css/style-157ad380.css>; as=style; rel=preload, </static/css/19.style-89ee4d1f.css>; as=style; rel=preload, </static/js/19.4d89f99d.chunk.js>; as=script; rel=preload, </static/js/bundle.81eca8c6.js>; as=script; rel=preload, </static/js/StartPage-StartPage.0284760d.chunk.js>; as=script; rel=preload
content-encoding: gzip
x-geoip-country: NO
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
set-cookie: SalesSource=; Path=/; Expires=Sat, 27 Nov 2032 09:40:02 GMT
geoipCountry=NO; Path=/; Expires=Sat, 27 Nov 2032 09:40:02 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/css/13.style-9a13872d.css
23.36.77.11200 OK 274 B URL HTTP/2 www.fernerjacobsen.no/static/css/13.style-9a13872d.css
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (397)
Hash 01caaf0a8c3e5421fe9dd71e3d901a4b
daa7f0a5520d997725ed67031c60bcb23c8bfa52
bd2524179bae1920029a591d53a4801d2051b54a2a20c0c31a070740d9e99995
GET /static/css/13.style-9a13872d.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
x-proxy-cache-static: MISS
x-server-instance: nginx-4
accept-ranges: bytes
content-encoding: gzip
content-length: 274
cache-control: public, max-age=18921563
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/css/style-157ad380.css
23.36.77.11200 OK 12 kB URL HTTP/2 www.fernerjacobsen.no/static/css/style-157ad380.css
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ceb06488a7d60a89e41a1510f63ddb6a
0884a5cae43526cd6a9a267369ebd56db75e2538
cdec021d5022159a35d479976b4efcf94a15a6ae117d41a0635dacfac7d9f7be
GET /static/css/style-157ad380.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
content-type: text/css; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 07:53:06 GMT
etag: W/"10d49-18465ad9a24"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003t
content-length: 11705
cache-control: public, max-age=30149752
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/css/19.style-89ee4d1f.css
23.36.77.11200 OK 4.0 kB URL HTTP/2 www.fernerjacobsen.no/static/css/19.style-89ee4d1f.css
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (14448)
Hash d2e744105ec722e10d237a7831485450
01dc4ee73133f7d26c0c2933e5550d49ab2ad4e4
dc4d027ff72eca189a213629c7130a560539f26e11705c526778415b18e8bd5a
GET /static/css/19.style-89ee4d1f.css HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
last-modified: Tue, 05 Jul 2022 13:48:52 GMT
content-encoding: gzip
x-proxy-cache-static: HIT
x-server-instance: nginx-1
content-length: 4046
cache-control: public, max-age=19023596
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js
23.36.77.11200 OK 2.1 kB URL HTTP/2 www.fernerjacobsen.no/static/js/StartPage-StartPage.0284760d.chunk.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7755)
Hash 7a7b4d000cc7a332beadf09a961de7ba
afeca864e0303173069e41a191b7c81965210756
e6d171c7f8cba750eefff48ee675be16d71641fcf6727dfa27ede39d54855a6a
GET /static/js/StartPage-StartPage.0284760d.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
content-encoding: gzip
x-proxy-cache-static: HIT
x-server-instance: nginx-1
content-length: 2090
cache-control: public, max-age=18933635
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp
23.36.77.11200 OK 128 kB URL HTTP/2 www.fernerjacobsen.no/pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x511, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (127738 bytes)
Hash a0897afeb4670e1a4d3d787b786e0b3d
e4aeb2441ef86c4b91850f25a13b4a6c06071f39
06d9d7b709ee8d477375f5352a80c74c5d5e8de0a3fa32d9e5246f30803d2436
GET /pub_docs/files/Startsidan/Startsiden-Monel-Juleshoot.jpg?extend=copy&width=1280&method=fit&height=511&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 09:58:48 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637c9b09-30b71"
server: Akamai Image Manager
content-length: 127738
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:03 GMT
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js
23.36.77.11200 OK 280 kB URL HTTP/2 www.fernerjacobsen.no/static/js/19.4d89f99d.chunk.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 280 kB (280064 bytes)
Hash fd9fadb544b85aed23e4ee9a0ed8038c
e9c7aaeca841f2bc2c29d3ea298bfc82f563da3c
2dd01c3053400fa99442c0327507e5fcf3f4e631649dd3706b0c8d72da6650a0
GET /static/js/19.4d89f99d.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 11:21:38 GMT
etag: W/"fa059-184666c82cd"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003r
content-length: 280064
cache-control: public, max-age=30160021
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/js/bundle.81eca8c6.js
23.36.77.11200 OK 57 kB URL HTTP/2 www.fernerjacobsen.no/static/js/bundle.81eca8c6.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d73fe8b393a89c3ec61d4cd2e59b24b8
c9bf349bdf2f3dfe81108c3da091d737f9828ed0
16a6fddf3635861e7ee001a40190620c585c23a7c28dc2a15c28372299ef16c7
GET /static/js/bundle.81eca8c6.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
last-modified: Fri, 11 Nov 2022 11:21:38 GMT
etag: W/"44767-184666c82d5"
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: vmss-lb-vmss-0300003r
content-length: 56566
cache-control: public, max-age=30160100
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
use.typekit.net/xji3gjg.css
23.36.76.186200 OK 817 B URL HTTP/2 use.typekit.net/xji3gjg.css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 5dc1295e7465a604b0756c1d0d30c7e1
709746c373f393f2ede4b223012e0dc056a51e80
490790d0d40cb2b6e75a6d59799e15c232fe255770785c37d97d32240e7c7e26
GET /xji3gjg.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 817
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css
23.36.76.186200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=xji3gjg&ht=tk&f=10294.10296.10298.10300.10302.10303&a=5504356&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated
151.101.85.26200 OK 109 B URL HTTP/2 cdn.polyfill.io/v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated
IP 151.101.85.26:0
Hash 442afba0c349583b010b3f2a3c35c005
9d43a1925afb9fdfd3bbced724054117d2ceacbe
7c7993ec427d23793c611b229dde93afbe0bfabd7457f101bd4269c8f13411f7
GET /v3/polyfill.min.js?callback=bootShop&features=es6,Object.values,Object.entries,Object.keys,Object.assign,Array.prototype.find,Array.prototype.findIndex,Array.prototype.flatMap,Array.prototype.includes,Array.prototype.keys,Array.from,Array.prototype.fill,String.prototype.endsWith,String.prototype.startsWith,URL,IntersectionObserver,Intl.~locale.nb,Promise,fetch,Symbol,ResizeObserver&flags=gated HTTP/1.1
Host: cdn.polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Sat, 19 Nov 2022 11:32:21 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Sun, 27 Nov 2022 09:40:03 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1660, PASS, fastly;desc="Edge time";dur=11
content-length: 109
X-Firefox-Spdy: h2
unpkg.com/share-api-polyfill@1.1.1/dist/share-min.js
104.16.125.175200 OK 8.5 kB URL HTTP/2 unpkg.com/share-api-polyfill@1.1.1/dist/share-min.js
IP 104.16.125.175:0
File type Unicode text, UTF-8 text, with very long lines (22039)
Hash dc88500e6b3996d8ff689ad3c9aac605
2bc21d61b92e226714bf7185e79207d00db18ff9
326c1aac2c68e37088f6f8bda21a07f1aec7df06846b0119a78e85ce0e20559a
GET /share-api-polyfill@1.1.1/dist/share-min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5784-gwJ3gtqPzZTmv5/rEEhUzGBu73Y"
via: 1.1 fly.io
fly-request-id: 01GDTKZMBR3RJV5TXFF62VKVJP-fra
cf-cache-status: HIT
age: 5422543
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e672ec20b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ab5cfc34009af6374a48a669db0aa627
fd4a5a97f743d1cc43d115e7df2551e23b89a203
5e81173bc4a2a4b14b7d7334d86c679f46b0de5c84280e2c5a49a536a2a0bd24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5563
Cache-Control: max-age=102949
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:03 GMT
Etag: "638209dd-118"
Expires: Mon, 28 Nov 2022 14:15:52 GMT
Last-Modified: Sat, 26 Nov 2022 12:43:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
use.typekit.net/af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
23.36.76.186200 OK 29 kB URL HTTP/2 use.typekit.net/af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 29448, version 1.0\012- data
Hash 858494ea87b7eca2bd52ecb0eaa97342
c5c66ca8ae5d0f4269ef61a27fdd25f639e681c5
1cceacea7ebbbb2c85638e7eb50b1f894fa261ca0b80d183971b42a6c30de7db
GET /af/d03e48/000000000000000077359df2/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29448
etag: "c64b4692d9d39a2fd5bd5786ad57155413f36625"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.186200 OK 27 kB URL HTTP/2 use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Hash 6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc
GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.186200 OK 28 kB URL HTTP/2 use.typekit.net/af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 27712, version 1.0\012- data
Hash ce87f4e0d16868acaa3a5f4d894e9c29
b0b82fa20adb7c495172f8345f0ef0a64d2f815e
fc19e2d873270cfa3ce69c2345fac36b8ab1b0fe2cd8983f0946a8c180f236b3
GET /af/8f4e31/0000000000000000000132e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27712
etag: "79f9defc7632bc87dc40a06c82c11882a3000992"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3
23.36.76.186200 OK 28 kB URL HTTP/2 use.typekit.net/af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 27872, version 1.0\012- data
Hash 0d593a6232ebaebc5dc7bb1a8e03aa8b
369e1e033abf18fdb8370d00d0b520e825c3fe20
63c4f0181f864289877cb36b11db32f28858a9716b7034cb1469b1036b474620
GET /af/b59a99/000000000000000077359df3/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27872
etag: "9117e591d6237d7c914b381911e03d2d7e28a9e3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/ferner_favicon.png
23.36.77.11200 OK 822 B URL HTTP/2 www.fernerjacobsen.no/ferner_favicon.png
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type PNG image data, 62 x 76, 8-bit colormap, non-interlaced\012- data
Hash d8789e01bbbbd00194ef2d2e2b4a6a0b
d8e10a13d68cd05f5ea8e35bf7a9d3a98f1bf9ac
d4d74c8e5667f31e4b80c46c684e8d03e1a16e606072f2ce42c2ba84a2e76d64
GET /ferner_favicon.png HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 822
accept-ranges: bytes
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
x-geoip-country: SE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
cache-control: public, max-age=18933249
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 286 B URL HTTP/2 www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 80x80, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cfabe1510fd6777d7adbcc0fd6256a6b
746d15b952b81244070b18194231f6d4fd29ce12
b3eba4d78691d81d6691e20e93ef4478dba122106a7767c22ef8f547dab96fcc
GET /pub_images/original/last-minute1.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 15:09:18 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 286
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 838 B URL HTTP/2 www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0ebe4be5303eae73aecf6db51f1a5805
2d2d95c626c881eb489f3223e059bff79acb352a
109903e9908d1ebdea0f0ab091f5d4261ff4a4fe245a10d78ee49112eb5ef085
GET /pub_images/original/parajumpers1_2.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 14:31:09 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1598
x-check-cacheable: YES
content-length: 838
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 284 B URL HTTP/2 www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 80x80, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0ed04a9d5f8f21eae855112f34baf299
1717ce4d9b9fdbdfd37ba7e0a4bda8195584119c
f83936624c82d08fa81e8f61faf647a523ddef6581a8982a94352d1f95d70d39
GET /pub_images/original/juliet1_6.jpg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 15:11:19 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 284
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 850 B URL HTTP/2 www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3d2b755f75144fb4fbde3c7ef4028805
10dd0155c1dcbf5b432a7a3a91c8e4a2cdac567a
f6b176ae3c8c598c9ce90ad51188100b19c91707ae3d94614aec6cc3013d8420
GET /pub_images/original/6997405-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 05 Jul 2022 09:45:04 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 850
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 806 B URL HTTP/2 www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash b392d6d7ae4cab5c3d64003c0274d18d
f78c918c8cc604a8352b1ef194d683d62b4bd259
1d023ba2bdcbf8271e4a47166d9cb2f3ff9c38b4f6b4d5eee9b702ec04a90912
GET /pub_images/original/6997417-1.jpeg?extend=copy&width=80&method=fit&height=80&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 17:03:04 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 806
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto
23.36.77.11200 OK 3.0 kB URL HTTP/2 www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 305x305, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77109f696b31c66f3c62bfc34d2e4e75
26acea6b6d932f5c19eef3c0743336812b2be1db
91c10e129c8a3fb1255856d842f41aa1481e88f332393ec770442a9fe2b52a4b
GET /pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=320&method=fit&height=305&sigma=2.5&minampl=0.5&quality=30&type=auto HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:35:53 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca58d-325ea"
server: Akamai Image Manager
content-length: 2964
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
23.36.77.11200 OK 146 kB URL HTTP/2 www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1219x1219, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 146 kB (146024 bytes)
Hash d0f525e9e5ad42e7c46f11185c2515ce
ad427c38c603c226fb9bce7120939a2297c5c11d
2a18f3e46d5ba1c4043e3e80c13af80f39dbb974f17fbbd338e124bb5b98062e
GET /pub_docs/files/Startsidan/Mid-Season-Salg-Dame-Kategori-Uke-47-Polo.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:36:08 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca58d-325ea"
server: Akamai Image Manager
content-length: 146024
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
unpkg.com/share-api-polyfill/dist/share-min.js
104.16.125.175302 Found 1.9 kB URL HTTP/2 unpkg.com/share-api-polyfill/dist/share-min.js
IP 104.16.125.175:0
Hash 9aedd6a89b14613bd1d62677e29fe1ce
1bcda88893fccd9d30e7b76aac277b27d039da5e
93342243569c94733a816cd3bc0dcabe960c00687b6a83d296bb34da963df18d
GET /share-api-polyfill/dist/share-min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /share-api-polyfill@1.1.1/dist/share-min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJW71H3FQWPEBEAQKBVCMJCB-ams
cf-cache-status: HIT
age: 295
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e672cbecb4f1-OSL
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
23.36.77.11200 OK 175 kB URL HTTP/2 www.fernerjacobsen.no/pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1219x1219, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 175 kB (174614 bytes)
Hash eb5351a432f4b610f98abaeaab735715
c6e0ca6dbf41b771feb9bfe50e7a76c0c092fb4e
110628e7982b945acc406a4f37eb52f038949a5414f83dd2536f62b1a046b539
GET /pub_docs/files/Startsidan/Mid-Season-Sale-Herre-Kategori-Uke-47.jpg?extend=copy&width=1280&method=fit&height=1219&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Tue, 22 Nov 2022 10:36:09 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "637ca595-2b361"
server: Akamai Image Manager
x-serial: 1333
x-check-cacheable: YES
content-length: 174614
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp
23.36.77.11200 OK 21 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dae06d6d313a2c75fff5cc5d5d861c98
49bc091ed018d97a12dbb321e2c245dd88bc1beb
af30b1b8944c7ea2a4371bb7cb7bfc39c3c4d05493779f15c6edb5c75f9988ca
GET /pub_images/original/last-minute1.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6204cf41-f116"
server: Akamai Image Manager
x-serial: 1811
x-check-cacheable: YES
content-length: 21094
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp
23.36.77.11200 OK 18 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5e71b3b87bf7cbd9f87175f04203d404
de4dba7cbbae368b738610d3acfdd90095ffca7f
02ca88088e9fd9f89cb375c0ccc8a1cb8ae0c85b597f0f8d81a5f438304740be
GET /pub_images/original/parajumpers1_2.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 18362
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
23.36.77.11200 OK 35 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 842c7f0f8220213a5ad9767696ec2241
b8d8a2de66acda8cf2d9f11c72b6bb02c1b6cb56
9b97fe490aa99863f3820f41535872ebc702162ce6d81fe7b6a3a301e2e7dabf
GET /pub_images/original/6997405-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 34900
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
23.36.77.11200 OK 34 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash a93d3bea20e9a3021be534c64695c20b
83f398f83a70d36e89b4b76c61341ae81501a2a6
ce92b07d316d39caee7b869c51011d88e9954ee652aac153c01bf133816c0868
GET /pub_images/original/6997417-1.jpeg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:42 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "623850ba-15420"
server: Akamai Image Manager
x-serial: 1131
x-check-cacheable: YES
content-length: 34390
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp
23.36.77.11200 OK 18 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 09e52f8ceea944f3c5a4935301232d1b
fa750a249b601f503881874e30c0b1b4f122ae4e
0339a055632c1f4cb159cb92f9c8d1d16c4788b12b1d34c3fadbaa748ebb8949
GET /pub_images/original/juliet1_6.jpg?extend=copy&width=640&method=fit&height=640&type=webp HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 08:55:43 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 14
x-check-cacheable: YES
content-length: 18158
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:04 GMT
date: Sun, 27 Nov 2022 09:40:04 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js
23.36.77.11200 OK 7.9 kB URL HTTP/2 www.fernerjacobsen.no/static/js/34.ef9c255e.chunk.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21167)
Hash eb946a1ba1512d5f682bb3c56e4b605b
3db5a8f8a71d121ca094eb7d9d59a4d4a68803da
f1532c7f926e45b5f2fd0cbf03764a6e88a94e4a62e569cb30eda7e7d5e5b5c0
GET /static/js/34.ef9c255e.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 30 Sep 2022 08:12:35 GMT
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: nginx-2
content-length: 7879
cache-control: public, max-age=26523177
date: Sun, 27 Nov 2022 09:40:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js
23.36.77.11200 OK 3.9 kB URL HTTP/2 www.fernerjacobsen.no/static/js/27.8e6d67f3.chunk.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (10379)
Hash a6416b71a65318facc7a7b1167e08617
f57d810edce6ed606593b4dc2fe32bb2c639e51b
18244dc9bc8c62572dbe5170983f7d70192333f533087e5ea49c81e5d7ba7959
GET /static/js/27.8e6d67f3.chunk.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 05 Jul 2022 13:48:52 GMT
content-encoding: gzip
x-proxy-cache-static: MISS
x-server-instance: nginx-4
content-length: 3918
cache-control: public, max-age=19023590
date: Sun, 27 Nov 2022 09:40:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
storeapi.jetshop.io/
20.103.29.134204 No Content 0 B IP 20.103.29.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: storeapi.jetshop.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,channelid,content-type,country,culture,currency,name,preview,shopid,token
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.21.6
date: Sun, 27 Nov 2022 09:40:04 GMT
access-control-allow-headers: authorization,channelid,content-type,country,culture,currency,name,preview,shopid,token
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 86400
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.fernerjacobsen.no/tryggehandel.js
23.36.77.11200 OK 1.4 kB URL HTTP/2 www.fernerjacobsen.no/tryggehandel.js
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
Hash 4e08dfcf02be7a42b86133b304392860
42176873609a053c4c43f8d3cb8b49491c68d383
19681cd8037dc92d4442412461dbd01172732ec75b1dc4c91f5f4eae1cce1623
GET /tryggehandel.js HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
last-modified: Wed, 22 Jun 2022 10:46:43 GMT
content-encoding: gzip
x-geoip-country: SE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
feature-policy: geolocation *;midi *;notifications *;push *;sync-xhr *;microphone *;camera *;magnetometer *;gyroscope *;speaker *;vibrate *;fullscreen *;payment *;
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data: blob: https:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
content-length: 1381
cache-control: public, max-age=18921499
date: Sun, 27 Nov 2022 09:40:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.findify.io/fernerjacobsen.no.min.js
143.204.55.105200 OK 3.0 kB URL HTTP/1.1 assets.findify.io/fernerjacobsen.no.min.js
IP 143.204.55.105:0
File type ASCII text, with very long lines (6948), with no line terminators
Hash e4d30aae9e85d9e9d122004f3fbf37c0
e13803b9fcbcb6862b49903f9a3bbef9648863db
72158422802f28a2d04ccdac4084372c244162ddc21a73204d1117a1a5834839
GET /fernerjacobsen.no.min.js HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 3019
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 00:10:14 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:39:02 GMT
Cache-Control: max-age=180
ETag: "e4d30aae9e85d9e9d122004f3fbf37c0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tvYGANfGY509k9m2SnF6tSexEorMCGCbfkIG_C_evkM8WxXEC4t3Fw==
Age: 64
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storeapi.jetshop.io/
20.103.29.134200 OK 44 kB IP 20.103.29.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 06decbf5afc62fedcf1c88fb609ad930
7a0e0ee5339d88ac7090c24ac7d50db2fa1ed228
6d099f1166a2c123b166add6c3846443f06461dfe7836c4a0a2e9a27e7161f1f
POST / HTTP/1.1
Host: storeapi.jetshop.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
token: 359fd7c1-8e72-4270-b899-2bda9ae6ef57
shopid: fernerjacobsen
currency: NOK
channelid: 1
culture: nb-NO
country: NO
name: M1 - Norway
authorization:
preview: false
Origin: https://www.fernerjacobsen.no
Content-Length: 2475
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 27 Nov 2022 09:40:04 GMT
content-type: application/json
access-control-allow-origin: *
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
assets.findify.io/fernerjacobsen.no-config.min.js
143.204.55.105200 OK 19 kB URL HTTP/1.1 assets.findify.io/fernerjacobsen.no-config.min.js
IP 143.204.55.105:0
File type Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Hash 6ded6d2c16ef1b32351716fee42499d0
38eee2ca628d3c482fd70a5edea9429319df9b35
84ab28fbaa7a5695aecb197975c362e218459b2e0aff22674f3a16d2e89fe206
GET /fernerjacobsen.no-config.min.js HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 18816
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 00:01:22 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:37:32 GMT
Cache-Control: max-age=180
ETag: "6ded6d2c16ef1b32351716fee42499d0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ri5b-31wGf_h3wW1GjOk4dIYNrjEvAmyfI_tpRKYYUAaruHyWdoSrw==
Age: 154
assets.findify.io/fernerjacobsen.no.min.css
143.204.55.105200 OK 9.5 kB URL HTTP/1.1 assets.findify.io/fernerjacobsen.no.min.css
IP 143.204.55.105:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9c0e9731e695bf2c9e2e99397691a74c
a43370dd2c82d643914047f20f8a8aead17c2aa1
b7489f13f71b21c1fea10bff1e9478939e31749009048eddc4690e399d53ad0b
GET /fernerjacobsen.no.min.css HTTP/1.1
Host: assets.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Content-Length: 9460
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 00:10:14 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 09:37:32 GMT
Cache-Control: max-age=180
ETag: "9c0e9731e695bf2c9e2e99397691a74c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QEUdbh_SmeszkuVd2M8ggruTdtxTwqK23lXHaBdUYJUkXDmy46SEYw==
Age: 154
www.googletagmanager.com/gtm.js?id=GTM-MRJM8V
142.250.74.168200 OK 72 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MRJM8V
IP 142.250.74.168:0
File type ASCII text, with very long lines (13960)
Hash 0c587a8a86fd08de7bb3406e01c57b31
5a0918041dfadd41c3c83bbd95d878e2d0cd23ee
8d1ebb2c9b0003c9fe9a969ac6ca0633ca7db25d0e2f50eb1aa032f8e92cf981
GET /gtm.js?id=GTM-MRJM8V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 09:40:05 GMT
expires: Sun, 27 Nov 2022 09:40:05 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72427
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js
151.101.85.229200 OK 16 kB URL HTTP/2 cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/initializer.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65060), with no line terminators
Hash f7e644798249d3f27c8a2d55498007c8
25487b9384ccb8b8589887470fc806ee829a01d4
028f72fb6e67f7774197f433d65129e5714672a13d1a8d14417a9fb5d10ddd4b
GET /npm/@findify/bundle@7.1.31/dist/initializer.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.1.31
x-jsd-version-type: version
etag: W/"fe24-oC4SD0A6F8Lh8mx5Gh7/n1faWQs"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 27 Nov 2022 09:40:05 GMT
age: 3205053
x-served-by: cache-fra-eddf8230020-FRA, cache-bma1672-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16343
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js
151.101.85.229200 OK 35 kB URL HTTP/2 cdn.jsdelivr.net/npm/@findify/bundle@7.1.31/dist/879.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2aa520f805d334f1d7a895c84567e886
f7dd9f5fe92bcab94c926fd94ec212ee02865d01
b616be253c666055a81a1356ca811602091d0438396e4bda47003a46cdb43380
GET /npm/@findify/bundle@7.1.31/dist/879.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.1.31
x-jsd-version-type: version
etag: W/"1d0d1-TWyj79314TNq63j+SosSnaut57E"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 27 Nov 2022 09:40:05 GMT
age: 1655290
x-served-by: cache-fra-eddf8230065-FRA, cache-bma1672-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 35282
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 54efb6dea7238996233e2db433b34b00
b23690bee4b5ec4bb5e2599556501d3b16edbc5b
da2f5886f6727f1bfe73134488a82d22558eed71805a19352fcec3425a98d3a3
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "48CDA7F27797A0DB560CF8E312E1773B8FDC49EC"
Expires: Sun, 27 Nov 2022 20:00:00 GMT
Last-Modified: Sun, 27 Nov 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2008
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7709e67ce81ab50f-OSL
consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf
23.72.139.51200 OK 32 kB URL HTTP/2 consent.cookiebot.com/uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf
IP 23.72.139.51:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 696e11ea704a1a9043864196e1dd41ee
a322a1d9858541cb17a662d8267c1a86b91fc6c3
33a05733a663a3d87ea1275899038ec82a2824de58b8fd07f02c9852dbc56c43
GET /uc.js?cbid=73c3022f-a166-4798-99c3-f156b245efdf HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 22 Nov 2022 07:34:39 GMT
accept-ranges: bytes
etag: "db2e3fe144fed81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31705
cache-control: public, max-age=882
expires: Sun, 27 Nov 2022 09:54:47 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
gtm.adt313.net/jsTag?ap=1445461266
54.230.111.106200 OK 12 kB URL HTTP/2 gtm.adt313.net/jsTag?ap=1445461266
IP 54.230.111.106:0
File type ASCII text, with very long lines (11644), with no line terminators
Hash 19ef199b8d413f614f5a93f17dbc7d30
8f01d7fa0c41b98de140bb8d59de832ae4196b24
46e1dbd8b59cd17d996b75a459079239102e97471341a570c05fea906d4d9150
GET /jsTag?ap=1445461266 HTTP/1.1
Host: gtm.adt313.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 11644
access-control-allow-origin: *
x-traceid: 0fa36afd-90f9-4be1-91e7-2d15e7fc6549
date: Sun, 27 Nov 2022 09:26:43 GMT
cache-control: max-age=10800, s-maxage=1800
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4p5dHqJN2Ug23eBLQWESt6rddgIEBnKK1IUgZNyruVhMo6XaW7EM6Q==
age: 801
X-Firefox-Spdy: h2
consentcdn.cookiebot.com/sdk/bc-v4.min.html
104.110.3.72200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP 104.110.3.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=29771517
expires: Mon, 06 Nov 2023 23:32:02 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false
23.72.139.51200 OK 57 kB URL HTTP/2 consent.cookiebot.com/73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false
IP 23.72.139.51:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65499)
Hash 915d36fdd1e6cd541db111f0a3ec9c27
313a1c7bfb47c6b40e2017266c1397ee455153a4
12c30eae414e9c65621f7b7b89b8c7f356ad19bc6c3d7810027b79db42ddb794
GET /73c3022f-a166-4798-99c3-f156b245efdf/cc.js?renew=false&referer=www.fernerjacobsen.no&dnt=false&init=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Sun, 27 Nov 2022 09:40:05 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 57201
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
api-v3.findify.io/v3/recommend/home-findify-rec-2
54.230.111.2200 OK 0 B URL HTTP/2 api-v3.findify.io/v3/recommend/home-findify-rec-2
IP 54.230.111.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3/recommend/home-findify-rec-2 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-key
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
date: Sun, 27 Nov 2022 09:40:05 GMT
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DizYTr4p4Wy8vSN4dYWvcgzppfJZq8Jw3UJSPWxuSscU1IAoiOFlWw==
X-Firefox-Spdy: h2
api-v3.findify.io/v3/recommend/home-findify-rec-1
54.230.111.2200 OK 0 B URL HTTP/2 api-v3.findify.io/v3/recommend/home-findify-rec-1
IP 54.230.111.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3/recommend/home-findify-rec-1 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-key
Referer: https://www.fernerjacobsen.no/
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
date: Sun, 27 Nov 2022 09:40:05 GMT
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rmg7v4UnwQNMCRpMOIh8FXxLDyTON86KmIQFli8pRg_MGgeShkYg3g==
X-Firefox-Spdy: h2
api-v3.findify.io/v3/recommend/home-findify-rec-1
54.230.111.2200 OK 23 kB URL HTTP/2 api-v3.findify.io/v3/recommend/home-findify-rec-1
IP 54.230.111.2:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17427)
Hash bbb261c4b670f39149c93e44c99444d4
5de3d79936a49dbeb9ac0fae2bd7e6507d074577
4e6854b1a940d9eb6d4ab39c6a268db688a718162851ee0f0953443686710480
POST /v3/recommend/home-findify-rec-1 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-key: 20e1a595-3c4d-4bc6-b038-2265aebf91c6
Content-Length: 203
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
date: Sun, 27 Nov 2022 09:40:05 GMT
etag: W/"449e-0nyCFCP+oOY4T86PtJNYdRQYx+I"
expires: 0
pragma: no-cache
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uUpRGOJYvq8dOkMNx27IsFOCCTF0UdLPpYfqDaE0MLP2qzIsYf8HbQ==
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055247--1.jpg?timestamp=1669540849
23.36.77.11200 OK 36 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055247--1.jpg?timestamp=1669540849
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffa8e33f5c684a9dc4e3069dfd6e21d8
d1f92ad5d71b2db0cb7bec43d2e3f42307cd7454
6562669911fa2b6c73ef89046ca6c1a4f7873cf8b244ceea597fbebf616f0935
GET /pub_images/large/8055247--1.jpg?timestamp=1669540849 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:33 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831de1-cb59"
server: Akamai Image Manager
x-serial: 1649
x-check-cacheable: YES
content-length: 35578
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8056389--1.jpg?timestamp=1669541803
23.36.77.11200 OK 23 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8056389--1.jpg?timestamp=1669541803
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9c14e464a86657d4569e121e1dc5b011
4d21bcb0873612a8043dc6db83122e5e6ddce68c
81d26216819d628c8c0ffa1bf7f4e8c97d6af2c6404bf02e7314cb5764a9c08d
GET /pub_images/large/8056389--1.jpg?timestamp=1669541803 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383219b-a16e"
server: Akamai Image Manager
content-length: 22882
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055196--1.jpg?timestamp=1669539940
23.36.77.11200 OK 34 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055196--1.jpg?timestamp=1669539940
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4431e970869af03b1e012a68fb901379
43791bc0fe1572fb4137b516f7262ff7f986e8c3
783eef8b32705b2a6f5020d8cd96e6d89612b2aea6e713501758ea6ac08c173c
GET /pub_images/large/8055196--1.jpg?timestamp=1669539940 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831a54-ba8e"
server: Akamai Image Manager
content-length: 33520
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055221--1.jpg?timestamp=1669540314
23.36.77.11200 OK 42 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055221--1.jpg?timestamp=1669540314
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4cddab75a273cf1fb69dcac4bb77e607
5f392215437dc9c05c67de4ada49357a24e356c3
89311ebfadaa6aa4e848f61d5b2026a9a0fb67c3e0c0ef331b69014fae85a592
GET /pub_images/large/8055221--1.jpg?timestamp=1669540314 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:47 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831bca-d938"
server: Akamai Image Manager
x-serial: 143
x-check-cacheable: YES
content-length: 41904
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055243--1.jpg?timestamp=1669540634
23.36.77.11200 OK 4.6 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055243--1.jpg?timestamp=1669540634
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 09463234e8e3aa5e96200396d93a0d9e
0a387da17884b2522143fa665ff4292089a254ea
3feb012d1022a904e0cf3df069cc15d84e5985fc1e36104bd1f94420c1f2536b
GET /pub_images/large/8055243--1.jpg?timestamp=1669540634 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831d0a-4940"
server: Akamai Image Manager
x-serial: 251
x-check-cacheable: YES
content-length: 4642
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8024724--1.jpg?timestamp=1669480608
23.36.77.11200 OK 40 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8024724--1.jpg?timestamp=1669480608
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98c55b5fb464f06e2b1de3ff65f67005
0af6a898639f57833095c945ab43401f4e96678e
b4f40914e759c1777098c6a2a587a2c4bd18305df7d6cd96c92564574c1f0236
GET /pub_images/large/8024724--1.jpg?timestamp=1669480608 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sat, 26 Nov 2022 16:20:56 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63823290-d6fb"
server: Akamai Image Manager
x-serial: 1761
x-check-cacheable: YES
content-length: 39578
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8056388--1.jpg?timestamp=1669541484
23.36.77.11200 OK 4.7 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8056388--1.jpg?timestamp=1669541484
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f44ca0fd804f73119955a19b008d9491
f20026ba60d01f0bb140c7b0d3fc96fe39c31d60
dbe54a68bac747a8d2a48c7c7313dab53f1841a65ff43b4c4f33ca023e3e380d
GET /pub_images/large/8056388--1.jpg?timestamp=1669541484 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383205c-45c0"
server: Akamai Image Manager
content-length: 4698
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055116--1.jpg?timestamp=1669539640
23.36.77.11200 OK 11 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055116--1.jpg?timestamp=1669539640
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ad0f06cb84c85f32a3621ebd8df36340
4fd101d9ad2e108dba82ae3a07141bfe88f82df8
a2f6536206034d597a29f52eef7e21c3f5ae03bcc22a37666bfc3df7ff412384
GET /pub_images/large/8055116--1.jpg?timestamp=1669539640 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:46 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831928-74f5"
server: Akamai Image Manager
x-serial: 220
x-check-cacheable: YES
content-length: 10604
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8055251--1.jpg?timestamp=1669540915
23.36.77.11200 OK 51 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8055251--1.jpg?timestamp=1669540915
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Hash 9627ab9eca2465d904fec0a229bae9ef
e3bb01085c0652f5347e37e69627fcab073cb509
45bc1a50447b0208f669b3787887d61f9a1261912c43c54545d549dd565698f0
GET /pub_images/large/8055251--1.jpg?timestamp=1669540915 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "63831e23-108cc"
server: Akamai Image Manager
x-serial: 1932
x-check-cacheable: YES
content-length: 50567
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/8056391--1.jpg?timestamp=1669542044
23.36.77.11200 OK 37 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/8056391--1.jpg?timestamp=1669542044
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Hash d30ffe119085d4908adc0df19293b1ec
9d08d8de17bfd64b564045f6028e3edf23c4373f
acf83f54b696a871c429a2bbb21f73ab416125200e9aa4708d81de227738d8cf
GET /pub_images/large/8056391--1.jpg?timestamp=1669542044 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 27 Nov 2022 09:17:45 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
etag: "6383228c-c50a"
server: Akamai Image Manager
content-length: 37424
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/1934440.jpg?timestamp=1636896987
23.36.77.11200 OK 41 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/1934440.jpg?timestamp=1636896987
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 285e7920cf2e5478dd8436be9dcb0273
438f1e078ca4e6cb1a9756fedf27597c4825fdf8
9be247ccaf1520ba2b94c9838ccdabe84373391360b9bc067017de90fdc9862e
GET /pub_images/large/1934440.jpg?timestamp=1636896987 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 14:28:21 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 557
x-check-cacheable: YES
content-length: 40824
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091
23.36.77.11200 OK 8.3 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e69d35d422ab02359d7151096852b3ad
37784e93007bbd9f5931bc2ba3abc8930cdb5866
a06e237ada87e8c9e29a87ae1acf3d92d487fc10cb9d1dfe5799f8f653353398
GET /pub_images/large/Bergen-900-Black-5637062-1.jpg?timestamp=1653044091 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:06:17 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 8286
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216
23.36.77.11200 OK 9.8 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9d4f2577f5cf09930ac2f59dad6e881
92f1eca171e28b891294c73b49d7a9ba89ab967e
81d7aaea96ca99965022763321f69e4c9a5478e4378613fd51f1dc739dcedb33
GET /pub_images/large/Bergen-050-Beige-5637058-1.jpg?timestamp=1653045216 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 09:38:39 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 9774
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/parajumpers1_2.jpg?timestamp=1644484174
23.36.77.11200 OK 23 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/parajumpers1_2.jpg?timestamp=1644484174
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2650e867c9d32bae1e7eba562c5db879
16d06adf6aacb1a41af5287bf3f8b47e74603b62
ed8d4aa10e35e74eb7015ceb6a4bcc3e4f41515451b2d530332cdf8af5766a19
GET /pub_images/large/parajumpers1_2.jpg?timestamp=1644484174 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:15:26 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 22984
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/7650538-1.jpeg?timestamp=1662043760
23.36.77.11200 OK 40 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/7650538-1.jpeg?timestamp=1662043760
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac59e6e85822fcb6e6931f80d119b26e
7fcfcafe379879b1d59a8f48628d0cca44496b32
696dd7dd2bb1c443ef1d711dcfae79116e35ab7c1f700007ba06139e110bfe68
GET /pub_images/large/7650538-1.jpeg?timestamp=1662043760 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Thu, 01 Sep 2022 15:30:26 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 39788
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/7649957-1.jpeg?timestamp=1662655059
23.36.77.11200 OK 86 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/7649957-1.jpeg?timestamp=1662655059
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Hash d042813e624cdd20085a8a517e75d1cd
44879438eefab745464c6a881f9b6971ed5a255c
fb859b98bb35e4c62aca52a2887f4188d4eedd87fb01913ce1c6748d2dfdb736
GET /pub_images/large/7649957-1.jpeg?timestamp=1662655059 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Fri, 09 Sep 2022 01:46:22 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1973
x-check-cacheable: YES
content-length: 85714
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/7650055-1.jpeg?timestamp=1666284134
23.36.77.11200 OK 33 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/7650055-1.jpeg?timestamp=1666284134
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2dd7276939cbbaf8be48e515ac2ce30e
d69a8334818805fffb437804c09a26e7fa995fea
9fd77a28a9a25994eac0318355225c6977715ee84025d5dcd2473ca4f07a370c
GET /pub_images/large/7650055-1.jpeg?timestamp=1666284134 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Thu, 20 Oct 2022 15:06:53 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 32844
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/3273083.jpg?timestamp=1636843838
23.36.77.11200 OK 5.7 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/3273083.jpg?timestamp=1636843838
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 166fb7bd6fd1a92868ade930768a3444
55fb6dd449ee59fca1e41aa21fa74454fa962e25
522616201cb28058740f93a1648397f6b9b94bbcfefb30a4f4995b8fffb68333
GET /pub_images/large/3273083.jpg?timestamp=1636843838 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 04 Jul 2022 13:47:27 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 5712
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/7966257-1.jpg?timestamp=1666519383
23.36.77.11200 OK 78 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/7966257-1.jpg?timestamp=1666519383
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 800x800, components 3\012- data
Hash 048d9d353d9a725cd9eb0c9193d992c6
2284d4ecf4ee8446b15c75a09c42b72933d77196
20d3d273685ee47171176b53f0048431a85f6e22d15c6e7a41e2a3158f37dddc
GET /pub_images/large/7966257-1.jpg?timestamp=1666519383 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Sun, 23 Oct 2022 09:08:44 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
content-length: 78099
content-type: image/jpeg
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
www.fernerjacobsen.no/pub_images/large/7662296-1.jpg?timestamp=1666002610
23.36.77.11200 OK 14 kB URL HTTP/2 www.fernerjacobsen.no/pub_images/large/7662296-1.jpg?timestamp=1666002610
IP 23.36.77.11:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53e2c0759e6403f2ff3f314cd88f6e5a
f85a623d5dc1d64d431dd654f8764473f9615d23
1af0075f7423e6e8f8f2540a365ed8230cebc2645f06777d085aae1bb93a6b38
GET /pub_images/large/7662296-1.jpg?timestamp=1666002610 HTTP/1.1
Host: www.fernerjacobsen.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fernerjacobsen.no/?kk=a4c6294-184b8753805-1a94f1&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Connection: keep-alive
Cookie: SalesSource=; geoipCountry=NO; RWuid=afevjx26v; _ga-ss=1|UA-41490239-1 |https%3A%2F%2Fapi.kelkoogroup.net%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 17 Oct 2022 10:03:55 GMT
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
server: Akamai Image Manager
x-serial: 1408
x-check-cacheable: YES
content-length: 14464
content-type: image/webp
cache-control: private, no-transform, max-age=86400
expires: Mon, 28 Nov 2022 09:40:05 GMT
date: Sun, 27 Nov 2022 09:40:05 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&gjid=835738334&_gid=940725023.1669542006&_u=YEBAAUAAAAAAACACI~&z=104317711 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.fernerjacobsen.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41490239-1&cid=717411021.1669542006&jid=1902355381&_u=YEBAAUAAAAAAACACI~&z=66244311 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 281 B IP 104.18.32.68:0
Hash b1920d69805dd26034a60cc5ece3bd0c
d549e3ea9e94bad72e64010264017552e932adee
0347ac9cf5cab25ce166e4cd12ae0631beff58d46f0810c86b43edb89ee779ba
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 21:56:18 GMT
Expires: Sat, 03 Dec 2022 21:56:17 GMT
Etag: "d549e3ea9e94bad72e64010264017552e932adee"
Cache-Control: max-age=561970,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e67fe8070b65-OSL
api-v3.findify.io/v3/recommend/home-findify-rec-2
54.230.111.2200 OK 8.7 kB URL HTTP/2 api-v3.findify.io/v3/recommend/home-findify-rec-2
IP 54.230.111.2:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (30402)
Hash f41c4b1ca9c8435181c44acf59a05771
94cbdd5a376f9cce834fa145013d3a014efc2369
a4b00ecb59b8eb9b46a25f27e4672c20a94c00042ebb9f059c43072997078371
POST /v3/recommend/home-findify-rec-2 HTTP/1.1
Host: api-v3.findify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
x-key: 20e1a595-3c4d-4bc6-b038-2265aebf91c6
Content-Length: 203
Origin: https://www.fernerjacobsen.no
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-type,Accept,x-key
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
date: Sun, 27 Nov 2022 09:40:05 GMT
etag: W/"75cf-iQm3uYpDj16BgzAcDHcLaT6d3XE"
expires: 0
pragma: no-cache
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mUrRLwssWN4hH0WpsnMhqX3CNckYuk0j2WJ9hY8W_yUow94x6OJavQ==
X-Firefox-Spdy: h2
tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1
213.155.156.188307 Temporary Redirect 0 B URL HTTP/2 tb.de17a.com/api/getUid?data=%7B%7D&callback=$d7_cb_1
IP 213.155.156.188:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/getUid?data=%7B%7D&callback=$d7_cb_1 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Sun, 27 Nov 2022 09:40:06 GMT
location: https://tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1
set-cookie: guid=1.2533175231622677088; Max-Age=31104000; Path=/; Domain=.de17a.com; SameSite=None; Secure;
content-length: 0
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1
213.155.156.188200 OK 63 B URL HTTP/2 tb.de17a.com/api/getUid;c?data=%7B%7D&callback=$d7_cb_1
IP 213.155.156.188:0
ASN #1299 Telia Company AB
File type ASCII text, with no line terminators
Hash 8b94ce4bc6dad8a1f0c617bd6452cfe0
5102037fd0a91669fdd2172432348a25e7c0c143
5dff2c10803a82290da0f8c1cba1762d98a3e27f2fe23d83841091eb19bc36a6
GET /api/getUid;c?data=%7B%7D&callback=$d7_cb_1 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: application/json
content-length: 63
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2
213.155.156.188200 OK 1.8 kB URL HTTP/2 tb.de17a.com/api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2
IP 213.155.156.188:0
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (1778), with no line terminators
Hash edabd7b5e18d40e251ccd950ce2b7dc9
70038afd560f64b5773488b6a349f80544d59477
dff9a0eeea6e77b0e2a75fcb3335abab9baa6fbc04432df665c3fc5734cf47b8
GET /api/pageView?data=%7B%22action%22%3A%22pageView%22%2C%22pageId%22%3A%22YOUR_PAGE_ID%22%2C%22url%22%3A%22https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22title%22%3A%22Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen%22%2C%22trackingAccountId%22%3A%221115%22%2C%22referrer%22%3A%22https%3A%2F%2Fapi.kelkoogroup.net%2F%22%7D&callback=$d7_cb_2 HTTP/1.1
Host: tb.de17a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: application/json
content-length: 1778
server: Jetty(9.3.8.v20160314)
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sync.userreport.com/cs.gif?s=d3prj11&fk=-3653036240222597273
143.204.55.64200 OK 43 B URL HTTP/1.1 sync.userreport.com/cs.gif?s=d3prj11&fk=-3653036240222597273
IP 143.204.55.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cs.gif?s=d3prj11&fk=-3653036240222597273 HTTP/1.1
Host: sync.userreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Thu, 30 Jan 2014 09:18:47 GMT
x-amz-meta-cb-modifiedtime: Thu, 25 Oct 2012 12:28:09 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 19:21:37 GMT
ETag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e0a5mW8lqEGQfHBSWqCOkc0Q9MHOTZPyFtL6n0xZin9fWP3-iOFtuA==
Age: 51510
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c6878ba0340a997632303de1b9d12b0a
9b85c079f50b95929d50626ed32ddaed256516e5
85eef2454de6ed2f8a4f994f1b17fcd9e2125fb38d64fbf390ed3e85788152e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5768
Cache-Control: max-age=93085
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381e28b-116"
Expires: Mon, 28 Nov 2022 11:31:31 GMT
Last-Modified: Sat, 26 Nov 2022 09:55:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006
172.64.154.237302 Found 0 B URL HTTP/2 dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006
IP 172.64.154.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: dsum.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-length: 0
location: /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1
cf-ray: 7709e6854e42b4f4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y4MwdvlkeYAPwlVG3ei1FQAA; Path=/; Domain=casalemedia.com; Expires=Mon, 27 Nov 2023 09:40:06 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1836; Path=/; Domain=casalemedia.com; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1836; Path=/; Domain=casalemedia.com; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4swfDghLYPmXyjNWuYVJ8o2xAMqklnUlhmWSaH0gDhXA4NH2R7eEFmFIR41Dv1j6KldocfZ629uzVqIVJmFRrDtMutNkW%2BMqqPvmCQ4XZAYvdiN4RULyU28QEkd1e0Vl4oiXnck"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1a05b0b8812c894b56cd8dad83d15702
9256eced3d878a58f6e5cd99eaef24a312e43d5b
7bd6436c53dc22deaedc8fcbb678a619b472c089c1d343dd887811e3088120d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2751
Cache-Control: max-age=88935
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381de1e-1d7"
Expires: Mon, 28 Nov 2022 10:22:21 GMT
Last-Modified: Sat, 26 Nov 2022 09:36:30 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edb56005298645f73e2f277aaf246dfa
a1f94910fb201ba2b02558b65e70c82b942b1e0c
537b0984a081827db03f86ea0999643c681f9b88a632d809602c80b2bff981b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4827
Cache-Control: max-age=111166
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "63822cd9-1d7"
Expires: Mon, 28 Nov 2022 16:32:52 GMT
Last-Modified: Sat, 26 Nov 2022 15:12:25 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1d5d1af46a4b6353b7788da51ca03fa0
e4481a65a88110abe2a99abfab2a7a8e16524b1b
882c37f62fd31e710a692402bb57c15ce430296f3f77fb4bf518ad20f720e8fa
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4802
Cache-Control: max-age=143577
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6382ab8d-1d7"
Expires: Tue, 29 Nov 2022 01:33:03 GMT
Last-Modified: Sun, 27 Nov 2022 00:13:01 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c6878ba0340a997632303de1b9d12b0a
9b85c079f50b95929d50626ed32ddaed256516e5
85eef2454de6ed2f8a4f994f1b17fcd9e2125fb38d64fbf390ed3e85788152e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5768
Cache-Control: max-age=93085
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6381e28b-116"
Expires: Mon, 28 Nov 2022 11:31:31 GMT
Last-Modified: Sat, 26 Nov 2022 09:55:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1
172.64.154.237200 OK 43 B URL HTTP/2 dsum.casalemedia.com/rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1
IP 172.64.154.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=175&external_user_id=-3653036240222597273&expiration=1672134006&C=1 HTTP/1.1
Host: dsum.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif
content-length: 43
cf-ray: 7709e685aebbb4f4-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tEbeI0yETz4t2%2FRQ9lihinmVk%2BlUdxADYeG4ntRi7cHGWSs54cwppXjjHUdQucdv2YqCxngATzOMLPUZspUk%2BgBiDyqmWxpt4c4DkCvOnzNgVorXGmD%2F7pn57fMnIV6SK5C9qjfa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273
185.64.190.80200 OK 42 B URL HTTP/2 image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=&gdpr_consent=&piggybackCookie=-3653036240222597273 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_336=5844--3653036240222597273; domain=pubmatic.com; secure; expires=Tue, 27-Dec-2022 09:40:06 GMT; path=/
PugT=1669542006; domain=pubmatic.com; secure; expires=Tue, 27-Dec-2022 09:40:06 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
pixel.advertising.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
3.126.56.137301 Moved Permanently 363 B URL HTTP/2 pixel.advertising.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
IP 3.126.56.137:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 9dcbac2402f94cecadf50ffa3efef9c9
137807fd41c10433ea3a900dc263208b4bb23efe
8af9070fa39ec6e045daffd195814567bb65198b3cacfe893a0f753ec25e0eb3
GET /ups/55955/sync?uid=-3653036240222597273&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 09:40:06 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBHYwg2MCEF7Y0uqkMGKMjATDpmpREJQFEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAsWkG4kaK9kB1zTW5g8QZ0w; Expires=Mon, 27 Nov 2023 15:40:06 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 363
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1
185.94.180.125302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7326&uid=-3653036240222597273&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=79fa2123-6e37-11ed-bd4d-1586fee60106; expires=Sun, 25-Dec-2022 09:40:06 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106
X-fe: 44
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106
185.94.180.125200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7326&uid=-3653036240222597273&img=1&__user_check__=1&sync_id=79fa218c-6e37-11ed-bd4d-1586fee60106 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=79ff177d-6e37-11ed-a8fb-141922060506; expires=Sun, 25-Dec-2022 09:40:06 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 64
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 85811b85660f9f939572dbb02365816e
69ef6cb29e40e30c2082c48c5cd7257e2abe6dd5
33f659b95b43a9b469c04dbea7aa2f52fe9bfefad49d1ee08d06b35c1e4926df
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145585
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "6382b13a-1d7"
Expires: Tue, 29 Nov 2022 02:06:31 GMT
Last-Modified: Sun, 27 Nov 2022 00:37:14 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 76RLMj02wf6Wi5bbr-B2GbUUYvF-uj5PRZ83WbOx1MTAihYgA9YQew==
Age: 5357
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 1bad111d8826d604f4f91fc3751b52a6
a19d6631d19ccb7a2ba59c908b856731431c4c69
3a09243d61d38fec95b99609036b64d08a8b7487ba2217d27543ce7cd5b398ce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102457
Date: Sun, 27 Nov 2022 09:40:06 GMT
Etag: "63820586-1d7"
Expires: Mon, 28 Nov 2022 14:07:43 GMT
Last-Modified: Sat, 26 Nov 2022 12:24:38 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wHdD56y2SeCra1wgU4V8Pkln7KxV69dENQUHusJnWeInIZH9uVgApw==
Age: 6185
ad.360yield.com/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
18.193.206.58302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
IP 18.193.206.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
set-cookie: tuuid=873d2b27-860a-4002-ae1e-6f0fad4c86cc; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1669542006; Expires=Sat, 25 Feb 2023 09:40:06 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
synchroscript.deliveryengine.adswizz.com/syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273
54.76.106.23200 0 B URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273
IP 54.76.106.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncMe?partnerDomain=de17a.com&idType=cookie&partnerUserId=-3653036240222597273 HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Sun, 27 Nov 2022 09:40:06 GMT
Instance-id: i-073347e74dc5a9c9d
Set-Cookie: OAID=68df3430ac2b84811edf391e6f03daf0; Domain=.adswizz.com; Expires=Tue, 27-Dec-2022 09:40:06 GMT; Path=/
X-Adswizz-request-id: 7a0889f0-6e37-11ed-afdd-06fefcf26e3f
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 0
Connection: keep-alive
ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
18.193.206.58200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006
IP 18.193.206.58:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=61&external_user_id=-3653036240222597273&expiration=1672134006 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 81ac539811e7c75c3e01f8d993ab2021
494af45d44a441ba3330fc087cf2718d058ff7ea
729fb0618f5b64b2f7393533325fd19887e15c642ae1dbff78c410f0add526ae
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 23:23:23 GMT
Expires: Thu, 01 Dec 2022 23:23:22 GMT
Etag: "494af45d44a441ba3330fc087cf2718d058ff7ea"
Cache-Control: max-age=394395,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e685cda60b65-OSL
ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55955/sync?uid=-3653036240222597273&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:07 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHcwg2MCEBL2nfWTqx9Qp8PzJz9H2pAFEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAitVBvkswBWOuext18sUGqw; Expires=Mon, 27 Nov 2023 15:40:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55955/sync?uid=-3653036240222597273&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 09:40:07 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHcwg2MCEHJZikqDkznT3KXweF9w_Q8FEgEBAQGBhGONYwAAAAAA_eMAAA&S=AQAAAplnJpf6MpHtEfbNWYu4Ns8; Expires=Mon, 27 Nov 2023 15:40:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ea101f7e711eb66ba76f9e395ce3b919
5be1c6a23b5e6059f4d882148c84eb941c7068ec
0f874cf2a25b7f913badd906ae5deb8429f8eb135973275ed5314162b37c7b31
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:40:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 13:55:55 GMT
Expires: Sat, 03 Dec 2022 13:55:54 GMT
Etag: "5be1c6a23b5e6059f4d882148c84eb941c7068ec"
Cache-Control: max-age=533146,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7709e6878f070b65-OSL
sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176
213.19.147.44200 OK 43 B URL HTTP/2 sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176
IP 213.19.147.44:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:07 GMT
content-length: 43
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F¤cy_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4
216.58.207.194200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F¤cy_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2479), with no line terminators
Hash 3eae4397f18afdb17bbf75d6b27f2536
98684cbe930f16fc4c534f88efebad14d23ba296
f46587cb68badf605de58211a8b832ee8269a2288106dcb5ecc7fafd0556b45c
GET /pagead/viewthroughconversion/123456789/?random=1669542005180&cv=11&fst=1669542005180&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&tiba=Ferner%20Jacobsen%20%7C%20Kj%C3%B8p%20merkekl%C3%A6r%20p%C3%A5%20nett%20-%20Ferner%20Jacobsen&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fernerjacobsen.no%2F%3Fkk%3Da4c6294-184b8753805-1a94f1%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F¤cy_code=NOK&us_privacy=1---&auid=630230700.1669542007&data=event%3Dpage_view%3Bpage_path%3D%2F%3BeventId%3D9cc66008-6b66-44f0-ba4f-c8581304f998&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1061
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 09:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
usermatch.targeting.unrulymedia.com/usermatch/delta/-3653036240222597273
213.19.147.44302 Found 0 B URL HTTP/2 usermatch.targeting.unrulymedia.com/usermatch/delta/-3653036240222597273
IP 213.19.147.44:0
GET /usermatch/delta/-3653036240222597273 HTTP/1.1
Host: usermatch.targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:06 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://sync.1rx.io/usersync/delta/-3653036240222597273
X-Firefox-Spdy: h2
zizr.id/integration/ferner-jacobsen.js
13.107.227.67200 OK 0 B URL HTTP/2 zizr.id/integration/ferner-jacobsen.js
IP 13.107.227.67:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /integration/ferner-jacobsen.js HTTP/1.1
Host: zizr.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-store
content-type: application/javascript
content-encoding: br
last-modified: Mon, 21 Nov 2022 09:59:10 GMT
accept-ranges: bytes
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-credentials: true
x-azure-ref-originshield: 0simDYwAAAAB3xJ3rtMD9T6yvT5Sh9bNiQU1TMDRFREdFMTgxNwA3ZGM2M2E4Mi1kOGVlLTQ3YTItYTA2Ny0wMWViNDQ1YjRiZTY=
x-azure-ref: 0czCDYwAAAAC5wBfkegdaR7oUfo+pyJ2wT1NMMjMxMDUwMjAzMDI1ADdkYzYzYTgyLWQ4ZWUtNDdhMi1hMDY3LTAxZWI0NDViNGJlNg==
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
rsms.me/inter/inter.css
172.67.223.193200 OK 0 B IP 172.67.223.193:0
GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zizr.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:40:03 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 04 Oct 2022 15:53:21 GMT
access-control-allow-origin: *
etag: W/"633c56f1-1490"
expires: Fri, 25 Nov 2022 05:52:05 GMT
cache-control: max-age=14400
x-proxy-cache: HIT
x-github-request-id: 0821:8122:54D276:576B89:633C5749
via: 1.1 varnish
age: 27
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664899213.652545,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 30b439f3b7737e36e775d6bfcb26bf5286f95667
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prHPPNtUizUqNWtfcu6pq6pPJmYAXbaxBL%2BrnAZtG7jburTp7tMi5P4iaeB17u%2Fjq%2F1%2BPmyg4sboQTtXkBTg8r5ZWHj35b2PL32TWeHk8yFm0LeGlqWsOEwt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7709e6732f58b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zizr.id/integration/ferner-jacobsen.css
13.107.227.67200 OK 0 B URL HTTP/2 zizr.id/integration/ferner-jacobsen.css
IP 13.107.227.67:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /integration/ferner-jacobsen.css HTTP/1.1
Host: zizr.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fernerjacobsen.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-store
content-type: text/css
content-encoding: br
last-modified: Mon, 21 Nov 2022 09:59:10 GMT
accept-ranges: bytes
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-credentials: true
x-azure-ref-originshield: 0By+DYwAAAAAExVTG93IiR6lByQJWbK11QU1TMDRFREdFMTkxOQA3ZGM2M2E4Mi1kOGVlLTQ3YTItYTA2Ny0wMWViNDQ1YjRiZTY=
x-azure-ref: 0czCDYwAAAAD3u+S9TGTxRI7DukmJvG6KT1NMMjMxMDUwMjAzMDI1ADdkYzYzYTgyLWQ4ZWUtNDdhMi1hMDY3LTAxZWI0NDViNGJlNg==
date: Sun, 27 Nov 2022 09:40:03 GMT
X-Firefox-Spdy: h2
sync.1rx.io/usersync/delta/-3653036240222597273
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync/delta/-3653036240222597273
IP 213.19.147.44:0
GET /usersync/delta/-3653036240222597273 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:40:07 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-5acba36e-dc10-4e11-be84-0d5a40685fcf-003%22%7D; path=/; expires=Mon, 27 Nov 2023 09:40:07 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync/delta/-3653036240222597273?zcc=1&cb=1669542007176
etag: RX5acba36edc104e11be840d5a40685fcf003
X-Firefox-Spdy: h2