r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12595
Expires: Wed, 01 Feb 2023 12:24:32 GMT
Date: Wed, 01 Feb 2023 08:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 01 Feb 2023 13:26:14 GMT
Date: Wed, 01 Feb 2023 08:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Wed, 01 Feb 2023 12:00:10 GMT
Date: Wed, 01 Feb 2023 08:54:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 08:43:25 GMT
content-type: application/json
age: 672
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AA2FK7NUuVOJ3VBaY/SKLMD/CdiRinmA/OEFrOrNGY0xuCEYog/a84UCk41pqkEVKCPTnRZ3gRbk0xwxS0BfVw==
x-amz-request-id: 0DKYHQWWXJAENC11
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 08:51:30 GMT
age: 187
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 08:49:05 GMT
age: 333
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
meamarelmorshidy.com/cpx_admin/plugins/ckeditor/plugins/a11yhelp/dnQsNHN3tA99RBn.php
50.28.32.8200 OK 2.2 kB URL HTTP/1.1 meamarelmorshidy.com/cpx_admin/plugins/ckeditor/plugins/a11yhelp/dnQsNHN3tA99RBn.php
IP 50.28.32.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (606)
Hash e0e15a65dc08cf0414b46fa28c2c82e3
767954783b659e8ddbdb3231ee0b2acdfeddf49e
b2405723c086d08814926ace309296bfb4442c78686de093fe8120140234a566
Analyzer Verdict Alert fortinet Malware
GET /cpx_admin/plugins/ckeditor/plugins/a11yhelp/dnQsNHN3tA99RBn.php HTTP/1.1
Host: meamarelmorshidy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 08:54:37 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14476
Expires: Wed, 01 Feb 2023 12:55:54 GMT
Date: Wed, 01 Feb 2023 08:54:38 GMT
Connection: keep-alive
meamarelmorshidy.com/page/bouncy.php?&bpae=GbhGtKsm5Vx%2F9rvPTdAGN%2BzOXaUwftAGKeOTgr76MNGvM%2Bx46%2FnZNQJkZNb%2F9bpXbPbsGJR5%2FiNMKD7AOiMdnWwGdX0skyfABQ6a6TIDUX%2FNMMgPdiGBJaGoFggfYmaEP1PE2MOwRT5H60G43roupWeui%2BeXn8jGxY8T2tLEVTM2BvtNHM402CKyu0zuK%2B6WQ6yAKNrO9lt6QI0gqNFNnWuGUqwu6N3BkN1qrXZIA4oZQvIoQZ8St8W0B7OiPSxHuadfD7vjl%2FTiYS3l4PCciUBiBgGo%2FQLxBpdu18m%2FGI4net7TWdqskxMAPiVXX4EafQurSi3hGhKhCUxL1V3CFThIXR3rsAVtyf66H0ivbusvRt5Y5Es3pOlNlmqdcroLaNGH49jmnPzfQYo6hSSXVD1QvGrOWPMFxv056expKdC8nNWC62cVx52wOB0Hu6eCh4%2Fzctk%2FxqGh2E00KMuVnlz1ArpwmPT6Ug%3D%3D&redirectType=js&inIframe=false&inPopUp=false
50.28.32.8200 OK 889 B URL HTTP/1.1 meamarelmorshidy.com/page/bouncy.php?&bpae=GbhGtKsm5Vx%2F9rvPTdAGN%2BzOXaUwftAGKeOTgr76MNGvM%2Bx46%2FnZNQJkZNb%2F9bpXbPbsGJR5%2FiNMKD7AOiMdnWwGdX0skyfABQ6a6TIDUX%2FNMMgPdiGBJaGoFggfYmaEP1PE2MOwRT5H60G43roupWeui%2BeXn8jGxY8T2tLEVTM2BvtNHM402CKyu0zuK%2B6WQ6yAKNrO9lt6QI0gqNFNnWuGUqwu6N3BkN1qrXZIA4oZQvIoQZ8St8W0B7OiPSxHuadfD7vjl%2FTiYS3l4PCciUBiBgGo%2FQLxBpdu18m%2FGI4net7TWdqskxMAPiVXX4EafQurSi3hGhKhCUxL1V3CFThIXR3rsAVtyf66H0ivbusvRt5Y5Es3pOlNlmqdcroLaNGH49jmnPzfQYo6hSSXVD1QvGrOWPMFxv056expKdC8nNWC62cVx52wOB0Hu6eCh4%2Fzctk%2FxqGh2E00KMuVnlz1ArpwmPT6Ug%3D%3D&redirectType=js&inIframe=false&inPopUp=false
IP 50.28.32.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8fb0e3ee8a64decf78e70219fde85a6c
7eabbdd371ba5c9d713d8e678f9a3780932206eb
f216c2bfb5fdac9a9657e36c91c4a6fbad4faa655ef1a289a2271e07a3932e27
GET /page/bouncy.php?&bpae=GbhGtKsm5Vx%2F9rvPTdAGN%2BzOXaUwftAGKeOTgr76MNGvM%2Bx46%2FnZNQJkZNb%2F9bpXbPbsGJR5%2FiNMKD7AOiMdnWwGdX0skyfABQ6a6TIDUX%2FNMMgPdiGBJaGoFggfYmaEP1PE2MOwRT5H60G43roupWeui%2BeXn8jGxY8T2tLEVTM2BvtNHM402CKyu0zuK%2B6WQ6yAKNrO9lt6QI0gqNFNnWuGUqwu6N3BkN1qrXZIA4oZQvIoQZ8St8W0B7OiPSxHuadfD7vjl%2FTiYS3l4PCciUBiBgGo%2FQLxBpdu18m%2FGI4net7TWdqskxMAPiVXX4EafQurSi3hGhKhCUxL1V3CFThIXR3rsAVtyf66H0ivbusvRt5Y5Es3pOlNlmqdcroLaNGH49jmnPzfQYo6hSSXVD1QvGrOWPMFxv056expKdC8nNWC62cVx52wOB0Hu6eCh4%2Fzctk%2FxqGh2E00KMuVnlz1ArpwmPT6Ug%3D%3D&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1
Host: meamarelmorshidy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://meamarelmorshidy.com/cpx_admin/plugins/ckeditor/plugins/a11yhelp/dnQsNHN3tA99RBn.php
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 08:54:38 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
35.167.56.184101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.167.56.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DkUrABO5WlFOWm9elHkUOg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nvdR2TnRJWh/Hp7AbNI6djVJzM0=
r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
66.165.243.160200 OK 802 B URL HTTP/1.1 r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
IP 66.165.243.160:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Hash 29ea9e9576b088747415ec0883f48fcb
f3fd6503d4a6592ea17183bf10889e308cdd0f0a
4d1fccb02ff920f580121c47e49e0f437750771927cf509789537cd04d88fa24
GET /redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://meamarelmorshidy.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Wed, 01 Feb 2023 08:54:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
r.redirekted.com/css/adren.css?n=2790544083
66.165.243.160200 OK 243 B URL HTTP/1.1 r.redirekted.com/css/adren.css?n=2790544083
IP 66.165.243.160:0
Hash f72acd3fece9f7cf58643616c745b2ea
92bc529a83c5466fbf6b9e702eef1e59644687a1
e2d9fd8b995f146baf54bc35d162d3e8169a5345368058b10a3b3bf4592ed777
GET /css/adren.css?n=2790544083 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: text/css
Content-Length: 243
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-f3"
Accept-Ranges: bytes
r.redirekted.com/js/adren.min.js?n=2790544083
66.165.243.160200 OK 7.5 kB URL HTTP/1.1 r.redirekted.com/js/adren.min.js?n=2790544083
IP 66.165.243.160:0
File type ASCII text, with very long lines (7528), with no line terminators
Hash 9a9ec61d7e275f25fe83f0aa93bd2e41
8a3a23c432b601e9f8f8fe2b61f0fedbc341c9ac
55afe8ae4db5b6ca9ec5a3aca1f3a7b482ca51d0914acd250093f1a9ecbfccec
GET /js/adren.min.js?n=2790544083 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: application/javascript
Content-Length: 7528
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-1d68"
Accept-Ranges: bytes
r.redirekted.com/favicon.ico
66.165.243.160200 OK 0 B URL HTTP/1.1 r.redirekted.com/favicon.ico
IP 66.165.243.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-0"
Accept-Ranges: bytes
r.redirekted.com/go?e=DwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV
66.165.243.160200 OK 1.8 kB URL HTTP/1.1 r.redirekted.com/go?e=DwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV
IP 66.165.243.160:0
File type HTML document, ASCII text, with very long lines (472)
Hash 3de95af3a5f214e6095b12efb65577f6
3a0cbac4ed776d9172f224ec9619f36c6e813ae8
c481bd68b5df3e6d1284a868ea0152a74ae56cee7539a3b532df392f3a227bcd
GET /go?e=DwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=7a9c2aebcc8b36b9b50af894caa6ce8b&request_id=6e0e8837ea97327825306c65b84637f1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
Set-Cookie: uuid=8647833621755037696; expires=Thu, 02-Feb-2023 08:54:39 GMT; Max-Age=86400
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Wed, 01 Feb 2023 08:03:19 GMT
Expires: Wed, 01 Feb 2023 10:03:19 GMT
Cache-Control: public, max-age=7200
Age: 3080
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
www.google-analytics.com/collect?v=1&_v=j99&a=2064662206&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1966006504.1675241700&tid=UA-32454353-1&_gid=2039594395.1675241700&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1247289146
142.250.74.14200 OK 35 B URL HTTP/1.1 www.google-analytics.com/collect?v=1&_v=j99&a=2064662206&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1966006504.1675241700&tid=UA-32454353-1&_gid=2039594395.1675241700&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1247289146
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=2064662206&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DDwCaxHVyfFC8MaWw53p8W2XbDUM9gRsX13F4bHsyjUF95Qsu1UX4AJsmclF9SzXWy3C5kGVyHGB-uPsXcPXabwXuk3LdfQsuclB9bGsyRKBefQBx1aq9ywXyflBeHFB6x3C55GVbxmK1pUpygaFbI0XbHKEdxFr9ZwqtqRA_0UDltlVxgaC9q0ZxpzCmfmKX13F8tHsyVlK8AUBYyaC9AHVbDTLmLUF-ZmC99SA78yF8W3XSglpafHA3uUn-IFB-jKW8WTsmuwF8IPpW5KWwfGsmEQL9gQBvcvCzRTsyNKLdHFs643pv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1966006504.1675241700&tid=UA-32454353-1&_gid=2039594395.1675241700&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1247289146 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Tue, 31 Jan 2023 16:03:17 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 60682
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd7f384052345bd8fc750307d7522395
82d864bbbb57ab178e7924ac6996d5efabb58ad1
b8b85a23952e9d04c80d5a7ae4638f86c410f9ef37c778659509b0c7545b6ac6
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3223
Cache-Control: max-age=120595
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:39 GMT
Etag: "63d9504b-1d7"
Expires: Thu, 02 Feb 2023 18:24:34 GMT
Last-Modified: Tue, 31 Jan 2023 17:30:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
95.211.116.26200 OK 32 kB URL HTTP/1.1 no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12878)
Hash 3208fcf92c0221df1eccfa87583d558b
e56ab0b7108034af8ee8c3450ec27163988a7bbf
353f81982ede2db2c1d4e3923a550116a13733a10c4b68bba8b8f15800363a96
GET /offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.redirekted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247
clickId: 107698154_1675241679698_8924757
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=5XkOcxWAnLN15BqDQGwS~u_8MTS5bf4CS3YOuxAW53PRsKCHEC1_BAPBWcdxKqIH6GSOQJ8Mk26ZchWhLp-y21ZOuQJJIBe0IfP8J658j8Ui~oTssqWsjueDYUx3bD2O; Max-Age=31536000; Expires=Thu, 01 Feb 2024 08:54:39 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c629a-1860c2f6b52-1634bd; Max-Age=31536000; Expires=Thu, 01 Feb 2024 08:54:39 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.015556S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 31831
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eed49d56f330fab19bb3b997a372f885cf2b72aff00309408b5c6ed211703e576bc116e289cd96fb2b19bc9596d9f020a0605ed577c88a0c8db8e157ecd01be56ecccdca369cf7dfea9fef57fe3ad82ee1d0bec5aa320ada07d667cd54552e558a54372283c1d53e5cf792f6b32f3039da72c02ffe78f3c35522e9b10b715a5667170c43177a2a007f7294022ca8e65278927e6809b6b2d78a4523858f5584f159d1943680a957348f8635e81de724ffa3ebfdd68ae68cdf73ef2e80d3f4382a459258c2f67182c73a3d50ce2bc48d3cd4f8257e5ed053e62d955813c9271f32e8dc05c02c1f0f989c932d1de2c0f8c030a2826554b63e95fdb8086f5f8dc5892a953ac826dcacf5a3b2acdfd1b7dd3d05a20283fb1bfe0c697c331df89cd3ddb14431aef56d24cb5f67009be74e3fca6cf77a4561e30fe86206db458dabeeb4566fcd6ab9ee2b8afdc7433987a15a3d88388865cefc537d7878f75b9c79ab0810cee56fead5b366e66d3ed8e9b6576be2a21072e13ad69f34d80dbf0eaa3ccb67e46e9a678a82c21eaf5886a477c565ec3
95.211.116.26200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=5XkOcxWAnLN15BqDQGwS~u_8MTS5bf4CS3YOuxAW53PRsKCHEC1_BAPBWcdxKqIH6GSOQJ8Mk26ZchWhLp-y21ZOuQJJIBe0IfP8J658j8Ui~oTssqWsjueDYUx3bD2O; kelkooID=a4c629a-1860c2f6b52-1634bd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247
clickId: 107698154_1675241679698_8924757
country: no
Request-Time: PT0.001641S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: image/png
Content-Length: 68
no-go.kelkoogroup.net/fp?country=no&k=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
95.211.116.26200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eed49d56f330fab19bb3b997a372f885cf2b72aff00309408b5c6ed211703e576bc116e289cd96fb2b19bc9596d9f020a0605ed577c88a0c8db8e157ecd01be56ecccdca369cf7dfea9fef57fe3ad82ee1d0bec5aa320ada07d667cd54552e558a54372283c1d53e5cf792f6b32f3039da72c02ffe78f3c35522e9b10b715a5667170c43177a2a007f7294022ca8e65278927e6809b6b2d78a4523858f5584f159d1943680a957348f8635e81de724ffa3ebfdd68ae68cdf73ef2e80d3f4382a459258c2f67182c73a3d50ce2bc48d3cd4f8257e5ed053e62d955813c9271f32e8dc05c02c1f0f989c932d1de2c0f8c030a2826554b63e95fdb8086f5f8dc5892a953ac826dcacf5a3b2acdfd1b7dd3d05a20283fb1bfe0c697c331df89cd3ddb14431aef56d24cb5f67009be74e3fca6cf77a4561e30fe86206db458dabeeb4566fcd6ab9ee2b8afdc7433987a15a3d88388865cefc537d7878f75b9c79ab0810cee56fead5b366e66d3ed8e9b6576be2a21072e13ad69f34d80dbf0eaa3ccb67e46e9a678a82c21eaf5886a477c565ec3
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=5XkOcxWAnLN15BqDQGwS~u_8MTS5bf4CS3YOuxAW53PRsKCHEC1_BAPBWcdxKqIH6GSOQJ8Mk26ZchWhLp-y21ZOuQJJIBe0IfP8J658j8Ui~oTssqWsjueDYUx3bD2O; kelkooID=a4c629a-1860c2f6b52-1634bd; _ga=GA1.2.79430477.1675241700; _gid=GA1.2.1657105522.1675241700
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247
clickId: 107698154_1675241679698_8924757
country: no
Request-Time: PT0.003176S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
no-go.kelkoogroup.net/favicon.ico
95.211.116.26404 Not Found 1.1 kB URL HTTP/1.1 no-go.kelkoogroup.net/favicon.ico
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8560de521c4990c7c870121fc9643508
0cacf7a6b96cceeb6ceae74d5f14dc87406a6f39
73a434285c3a752bc8c44aebd50e10f1a766853cbc7184e78d5c934c7b52b620
GET /favicon.ico HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=5XkOcxWAnLN15BqDQGwS~u_8MTS5bf4CS3YOuxAW53PRsKCHEC1_BAPBWcdxKqIH6GSOQJ8Mk26ZchWhLp-y21ZOuQJJIBe0IfP8J658j8Ui~oTssqWsjueDYUx3bD2O; kelkooID=a4c629a-1860c2f6b52-1634bd; _ga=GA1.2.79430477.1675241700; _gid=GA1.2.1657105522.1675241700
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Request-Time: PT0.000206S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1144
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ab75eed4af2eafbaa57b94a071cee3b9
499db323926b6a422f208430148270b1e384259d
3cf83db4ed771e5b723e669b64c74b58392f8d90ce4fb2abf78f8f5c5deb1f32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3CF83DB4ED771E5B723E669B64C74B58392F8D90CE4FB2ABF78F8F5C5DEB1F32"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19713
Expires: Wed, 01 Feb 2023 14:23:12 GMT
Date: Wed, 01 Feb 2023 08:54:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7159
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 08:54:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7159
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 08:54:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7159
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 08:54:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7159
Expires: Wed, 01 Feb 2023 10:53:58 GMT
Date: Wed, 01 Feb 2023 08:54:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4ef3610dcd19f46f763e313d46e9df6
3cdf187d3923ec5084192adf2b0f73f8c9534a56
e67f0cf265912e3bebfa296cf4c71be24e619efb396d74432a8ff912bf6998ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9841
x-amzn-requestid: 26093f6c-900b-425d-827c-4d70a2fa225a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGMFHOeIAMF-4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e6-29d957942dda79d0723d9e8f;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Chs87A3OGCMyp250Sz8F-sPoiOmDmlj8kUBrSrUtuEbYeD6we39KQg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:26:24 GMT
age: 5295
etag: "3cdf187d3923ec5084192adf2b0f73f8c9534a56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 40340
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 5218
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: daAf58GNG6Oy-ov_8TUeXnTcvZyW5eL_qwWz7dapr2Sy_5XSiS-3Mw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:56 GMT
age: 40303
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 23081
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 10:37:05 GMT
age: 80254
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eed49d56f330fab19bb3b997a372f885cf2b72aff00309408b5c6ed211703e576bc116e289cd96fb2b19bc9596d9f020a0605ed577c88a0c8db8e157ecd01be56ecccdca369cf7dfea9fef57fe3ad82ee1d0bec5aa320ada07d667cd54552e558a54372283c1d53e5cf792f6b32f3039da72c02ffe78f3c35522e9b10b715a5667170c43177a2a007f7294022ca8e65278927e6809b6b2d78a4523858f5584f159d1943680a957348f8635e81de724ffa3ebfdd68ae68cdf73ef2e80d3f4382a459258c2f67182c73a3d50ce2bc48d3cd4f8257e5ed053e62d955813c9271f32e8dc05c02c1f0f989c932d1de2c0f8c030a2826554b63e95fdb8086f5f8dc5892a953ac826dcacf5a3b2acdfd1b7dd3d05a20283fb1bfe0c697c331df89cd3ddb14431aef56d24cb5f67009be74e3fca6cf77a4561e30fe86206db458dabeeb4566fcd6ab9ee2b8afdc7433987a15a3d88388865cefc537d7878f75b9c79ab0810cee56fead5b366e66d3ed8e9b6576be2a21072e13ad69f34d80dbf0eaa3ccb67e46e9a678a82c21eaf5886a477c565ec3&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&initiator=timeout
95.211.116.26303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&initiator=timeout
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&initiator=timeout HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1675180357150&.sig=9A.oEvOShI20Wu2xyr1p.L3qPTE-&affiliationId=96965866&comId=100540408&country=no&offerId=fceabeb43b4c614437739ddc4ff91d10&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=tsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW&custom2=jKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=5XkOcxWAnLN15BqDQGwS~u_8MTS5bf4CS3YOuxAW53PRsKCHEC1_BAPBWcdxKqIH6GSOQJ8Mk26ZchWhLp-y21ZOuQJJIBe0IfP8J658j8Ui~oTssqWsjueDYUx3bD2O; kelkooID=a4c629a-1860c2f6b52-1634bd; _ga=GA1.2.79430477.1675241700; _gid=GA1.2.1657105522.1675241700
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247
clickId: 107698154_1675241679698_8924757
country: no
Location: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=0ucM~5sPjd5tqv7PeAgn9POZw7h9Ja6vs4oc4slzXmbnyv0r1RnuTUvyj8sZHuqj0rsK9ZkQ2OibiP73SArUCNw8Ojn0plSnlVKHWOtaIa6WiKQBQamHPwWO6G5YvPs1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 08:54:39 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.012222S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Wed, 01 Feb 2023 08:54:39 GMT
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675180357150%26.sig%3D9A.oEvOShI20Wu2xyr1p.L3qPTE-%26affiliationId%3D96965866%26comId%3D100540408%26country%3Dno%26offerId%3Dfceabeb43b4c614437739ddc4ff91d10%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DtsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW%26custom2%3DjKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540408%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Mc-Utstyr.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=79430477.1675241700&tid=UA-168544891-6&_gid=1657105522.1675241700&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247&cd3=100540408&cd4=a4c629a-1860c2f6b52-1634bd&cd5=&cd6=96965866%7C100540408%7C&z=123205495
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675180357150%26.sig%3D9A.oEvOShI20Wu2xyr1p.L3qPTE-%26affiliationId%3D96965866%26comId%3D100540408%26country%3Dno%26offerId%3Dfceabeb43b4c614437739ddc4ff91d10%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DtsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW%26custom2%3DjKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540408%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Mc-Utstyr.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=79430477.1675241700&tid=UA-168544891-6&_gid=1657105522.1675241700&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247&cd3=100540408&cd4=a4c629a-1860c2f6b52-1634bd&cd5=&cd6=96965866%7C100540408%7C&z=123205495
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1675180357150%26.sig%3D9A.oEvOShI20Wu2xyr1p.L3qPTE-%26affiliationId%3D96965866%26comId%3D100540408%26country%3Dno%26offerId%3Dfceabeb43b4c614437739ddc4ff91d10%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DtsyjaF9qKFSgPX1IxXcxKCmLULUEmC9OxZbZPM75GsUAGXW5KWvuRM8ElLxkapw9Ss6ZJF9IlVakKWjuHsytQF8gwW%26custom2%3DjKWjuHsyVPF9AUpwqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100540408%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Mc-Utstyr.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=79430477.1675241700&tid=UA-168544891-6&_gid=1657105522.1675241700&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1675241679704_1750247&cd3=100540408&cd4=a4c629a-1860c2f6b52-1634bd&cd5=&cd6=96965866%7C100540408%7C&z=123205495 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Wed, 01 Feb 2023 08:54:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
52.17.124.116200 OK 29 kB URL HTTP/2 www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
IP 52.17.124.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1001), with CRLF, LF line terminators
Hash f06de6313d4cc0426bc0e28639d994f8
5eb310390b5207c5ea81e8c829b5d79612bc6361
c401a0a378209422b7fd16b3635d6e29ea133e6c056c40e94754c143d92a6bd6
GET /products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: text/html; charset=iso-8859-1
content-length: 29175
x-frame-options: SAMEORIGIN
set-cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090; path=/; secure; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/js/stockgroups.js?v=11
52.17.124.116200 OK 4.3 kB URL HTTP/2 www.mc-utstyr.no/js/stockgroups.js?v=11
IP 52.17.124.116:0
Hash 88b38ae0366b04c36f5d5672ab0bef68
01ed6db06582e8859d6e4739c94fc117f2f605a2
4314896825a192ea4b8ba28ffe81f77a281fd1504a3eaee9fcb915657919cdec
GET /js/stockgroups.js?v=11 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: application/javascript
content-length: 4291
last-modified: Wed, 01 Feb 2023 08:21:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/templates/global/mystore/emojis.js?v=5
52.17.124.116200 OK 470 B URL HTTP/2 www.mc-utstyr.no/templates/global/mystore/emojis.js?v=5
IP 52.17.124.116:0
Hash 671c05b086658c750797ed65b51fb399
3dee28c0238d68bf2f1a1c7ae892bde6bfc5e2c8
87e6863afe729302ac62fe981fb853ed778c6fbf9f4449139690c066ea3ddd70
GET /templates/global/mystore/emojis.js?v=5 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: application/javascript
content-length: 470
last-modified: Wed, 01 Feb 2023 08:21:17 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mc-utstyr.no/users/themeeuropa_mystore_no/templates/europa/css/stylesheet_default_extended.css
52.17.124.116200 OK 8.9 kB URL HTTP/2 www.mc-utstyr.no/users/themeeuropa_mystore_no/templates/europa/css/stylesheet_default_extended.css
IP 52.17.124.116:0
Hash ae3bbc3a4973d031dfcf002f07429ab3
0d0dc2fb23424c75d5602d0b7623e5efa959dc2b
b6115f9ba660b37d71fcd38bd9f116f65c3099c239725e3c965c4844d177892d
GET /users/themeeuropa_mystore_no/templates/europa/css/stylesheet_default_extended.css HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: text/css
content-length: 8892
last-modified: Wed, 12 Feb 2020 09:49:56 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mc-utstyr.no/global.js.php?version=1675062519&v2&host=mcutstyr2_mystore_no
52.17.124.116200 OK 51 kB URL HTTP/2 www.mc-utstyr.no/global.js.php?version=1675062519&v2&host=mcutstyr2_mystore_no
IP 52.17.124.116:0
File type ASCII text, with very long lines (32341)
Hash cb265861770a3a564669b6a4d8365e5a
c76957d32cd888218cd35a2d5e8c431db479b077
82f7264b0735cb33dd55d8ad2185599feef310d74f9bf7ad9238e83305950eb1
GET /global.js.php?version=1675062519&v2&host=mcutstyr2_mystore_no HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: application/javascript; Charset: ISO-8859-1
content-length: 51247
expires: Wed, 08 Feb 2023 08:54:40 GMT
pragma: cache
cache-control: max-age=604800
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/mcutstyr2_mystore_no/templates/custom_javascript.js?v=1675241680
52.17.124.116200 OK 147 B URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/templates/custom_javascript.js?v=1675241680
IP 52.17.124.116:0
File type ASCII text, with CRLF line terminators
Hash 9187f40d748dc8c645dec149e3f1e1ac
8d519d3318af56503d43c500916bc033033a0b76
b0a228875b91b45f985f330057fddef323b4389d3d007a9b6a9a797d080389cd
GET /users/mcutstyr2_mystore_no/templates/custom_javascript.js?v=1675241680 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: application/javascript
content-length: 147
last-modified: Wed, 18 Apr 2018 12:29:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-31278684-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-31278684-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash f30f01c2d778ad836a91684c585aa085
ae09c2e80178fe47c708bec64c3c4e3de584de1d
a35b0c46ae2c901c1d8e6e465f2ad35cc9d9b8548082dbe0cb65fbf515fb499d
GET /gtag/js?id=UA-31278684-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 08:54:40 GMT
expires: Wed, 01 Feb 2023 08:54:40 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43936
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mcutstyr2-i02.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/48278_DANE_DANE_Julso_Gore-Tex_PRO_Shell_Sort_1.png/w249h300.png
54.230.111.127200 OK 86 kB URL HTTP/2 mcutstyr2-i02.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/48278_DANE_DANE_Julso_Gore-Tex_PRO_Shell_Sort_1.png/w249h300.png
IP 54.230.111.127:0
File type PNG image data, 249 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash ff48200721b940156082c5c5d1883266
4a5072a41cf17710fa9da06767ca4d56e71b44aa
dd2e880e9564ee8bd0853aa65c46313f4ff7ecd33215c8063c37529b4f99643e
GET /mysimgprod/mcutstyr2_mystore_no/images/48278_DANE_DANE_Julso_Gore-Tex_PRO_Shell_Sort_1.png/w249h300.png HTTP/1.1
Host: mcutstyr2-i02.mycdn.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 85715
date: Tue, 31 Jan 2023 20:26:23 GMT
last-modified: Sat, 08 Jan 2022 13:27:55 GMT
etag: "ff48200721b940156082c5c5d1883266"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: piIkSf-6kH7mWgDO7EUn2zXkoJDeOkGCEnuHv-9IIScRbEtBPKCFlA==
age: 44898
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/mcutstyr2_mystore_no/templates/custom_stylesheet.css?v=1675241680
52.17.124.116200 OK 202 B URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/templates/custom_stylesheet.css?v=1675241680
IP 52.17.124.116:0
File type ASCII text, with CRLF line terminators
Hash 34a0357dba36b1dee9ef2e983e599816
1ee831ad7bc7ede4a27149b3646b85b10611a040
8f6132611d5ebca31bd6eb6afd153802fdc9570e5e34bd0563c50f710e8e8770
GET /users/mcutstyr2_mystore_no/templates/custom_stylesheet.css?v=1675241680 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: text/css
content-length: 202
last-modified: Tue, 23 Oct 2018 06:44:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
mcutstyr2-i05.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19223_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_Gul_1.jpg/w300h199.jpg
54.230.111.74200 OK 5.5 kB URL HTTP/2 mcutstyr2-i05.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19223_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_Gul_1.jpg/w300h199.jpg
IP 54.230.111.74:0
File type JPEG image data, baseline, precision 8, 300x199, components 3\012- data
Hash 6dc41b2d9a0996dda24698526c79f007
5c572e596c36e6b953077a6f2d195dfb310c57a7
435383a0cc19df15b352d7f1fc83ed843cc272a2117f82310b7de1a6d92d074d
GET /mysimgprod/mcutstyr2_mystore_no/images/19223_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_Gul_1.jpg/w300h199.jpg HTTP/1.1
Host: mcutstyr2-i05.mycdn.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5473
last-modified: Tue, 26 Oct 2021 11:37:03 GMT
server: AmazonS3
date: Tue, 31 Jan 2023 20:26:23 GMT
etag: "6dc41b2d9a0996dda24698526c79f007"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P7A2oPft1qeJ3oAEETwDRa3d01Hh5Vw7xgv0Bb07y9m4pyYNIPclTg==
age: 44898
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/mcutstyr2_mystore_no/logo/Header10.22.187.png
52.17.124.116200 OK 9.3 kB URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/logo/Header10.22.187.png
IP 52.17.124.116:0
File type PNG image data, 300 x 59, 8-bit/color RGBA, non-interlaced\012- data
Hash af595df0cc94177267bdc4afc21b743e
c21625069bf1a780997a0b09c8e1a07bc51eeab6
a84761885314beeeed182d7dee9ef748824f955375938631b0b5e6e0d283a117
GET /users/mcutstyr2_mystore_no/logo/Header10.22.187.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 9330
last-modified: Mon, 22 Oct 2018 10:36:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/images/payment/mastercard.png
52.17.124.116200 OK 6.2 kB URL HTTP/2 www.mc-utstyr.no/images/payment/mastercard.png
IP 52.17.124.116:0
File type PNG image data, 48 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash cd9b81d4441cf9ad96e7fdd3e35bc26f
383003e483be0176cf1b1a73d8abdc80b33fd02d
dafc269485a34229e7e5bf93cc764d4f730c42fc5de21b52da823c8a18bde958
GET /images/payment/mastercard.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 6183
last-modified: Wed, 01 Feb 2023 08:21:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/images/payment/visa.png
52.17.124.116200 OK 5.5 kB URL HTTP/2 www.mc-utstyr.no/images/payment/visa.png
IP 52.17.124.116:0
File type PNG image data, 48 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash b8f6fb9891138413e60e775243197634
210eeea3f6e21682a46b6683d50136fa00339ae5
c72ac510eb4c051dd79700f0b98da701a025e5c1c0342e053bb90c029c8c616f
GET /images/payment/visa.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 5547
last-modified: Wed, 01 Feb 2023 08:21:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/mcutstyr2_mystore_no/Image/gtlogo.png
52.17.124.116200 OK 34 kB URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/Image/gtlogo.png
IP 52.17.124.116:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 884fd2d53ae27889fca763a6c681f777
11196b681a2c786cb86eb483883fb592938b4c3d
3dbf1bf86524d4db1bb6e28edae8b24bf0c984d2df7451494a9dd1de3b5c0542
GET /users/mcutstyr2_mystore_no/Image/gtlogo.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 33524
last-modified: Wed, 22 Oct 2014 18:33:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/themeeuropa_mystore_no/images/vipps-rgb-oransje.png
52.17.124.116200 OK 52 kB URL HTTP/2 www.mc-utstyr.no/users/themeeuropa_mystore_no/images/vipps-rgb-oransje.png
IP 52.17.124.116:0
File type PNG image data, 1921 x 778, 8-bit/color RGBA, non-interlaced\012- data
Hash 43fcf7f9b592cda545c693b63039089f
e2a509236e5e70097dd89cdb7d8844087f028ab3
541011d94be712e213bfc9f0316832a8f2b61e6617a35c4fdd59d1a341920938
GET /users/themeeuropa_mystore_no/images/vipps-rgb-oransje.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 51740
last-modified: Mon, 20 May 2019 13:40:17 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
mcutstyr2-i04.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19141_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_1.jpg/w300h199.jpg
54.230.111.74200 OK 4.6 kB URL HTTP/2 mcutstyr2-i04.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19141_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_1.jpg/w300h199.jpg
IP 54.230.111.74:0
File type JPEG image data, baseline, precision 8, 300x199, components 3\012- data
Hash d19e441e08bfb7d8e930039ad4586279
057df3bd5e802347932267009ce0be3d3e0b1196
2e0ad51af46f89c7beafd88699b1bfea0e2a7a03401f96ea2e718d466a1e2f63
GET /mysimgprod/mcutstyr2_mystore_no/images/19141_DANE_DANE_Ribe_Gore-Tex_PRO_Shell_Sort_1.jpg/w300h199.jpg HTTP/1.1
Host: mcutstyr2-i04.mycdn.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4556
last-modified: Tue, 26 Oct 2021 11:37:03 GMT
server: AmazonS3
date: Tue, 31 Jan 2023 20:26:23 GMT
etag: "d19e441e08bfb7d8e930039ad4586279"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rb8holU18jORVdDd0XY8igQoJy0P-RuPAKIIux4vr0zJNWQOTNr9mA==
age: 44898
X-Firefox-Spdy: h2
mcutstyr2-i04.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/3045__dan_0.jpg/w135h33.jpg
54.230.111.74200 OK 1.6 kB URL HTTP/2 mcutstyr2-i04.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/3045__dan_0.jpg/w135h33.jpg
IP 54.230.111.74:0
File type JPEG image data, baseline, precision 8, 135x33, components 3\012- data
Hash fe197b6ac613cd9802ba752b72decc8f
69e38a1d51645207505720bb5093affd4c81fe36
1547aed0a469f0d1949f383e83c3665de68ceaebf9f2442094261e3daa8322be
GET /mysimgprod/mcutstyr2_mystore_no/images/3045__dan_0.jpg/w135h33.jpg HTTP/1.1
Host: mcutstyr2-i04.mycdn.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1585
last-modified: Tue, 26 Oct 2021 08:47:40 GMT
server: AmazonS3
date: Tue, 31 Jan 2023 15:49:15 GMT
etag: "fe197b6ac613cd9802ba752b72decc8f"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VwX6oKz5uR4a3GDAn6g9p0V2I_hh0XzgJQfBApup4W0rQwbitpFEsg==
age: 61526
X-Firefox-Spdy: h2
s.kk-resources.com/leadtag.js
54.230.111.10200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js
IP 54.230.111.10:0
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: 66a876b0-2a91-405e-a876-b02a91c05ecf
X-Gravitee-Request-Id: 66a876b0-2a91-405e-a876-b02a91c05ecf
ETag: "4ce868c0fdc969d380979979f635e5c92f06898b"
Request-Time: 10
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Last-Modified: Thu, 05 Jan 2023 14:36:32 GMT
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 08:34:55 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JP06FESDFoVvqWLqpkXJLRJWP2N4ewmLAdmos7rqhz93m0-c23NCYQ==
Age: 1185
www.mc-utstyr.no/users/mcutstyr2_mystore_no/Image/danebanner1.jpg
52.17.124.116200 OK 32 kB URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/Image/danebanner1.jpg
IP 52.17.124.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 630x189, components 3\012- data
Hash f673a23142146a84bda6aab267a99796
f20feb5c206cd9fc9fac0cade284c9a4500a517d
040fc340841427a49a0c53cd842e585442c4bb82d78eb39a71524b430fe47166
GET /users/mcutstyr2_mystore_no/Image/danebanner1.jpg HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/jpeg
content-length: 31531
last-modified: Mon, 03 Nov 2014 11:33:45 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/images/payment/verified.png
52.17.124.116200 OK 16 kB URL HTTP/2 www.mc-utstyr.no/images/payment/verified.png
IP 52.17.124.116:0
File type PNG image data, 235 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 56c1826e09b5772154ca0844d812f51a
099bcf1ed730f7cc495aed37f497f357b30bc0ad
cdacc29a05ec3786abfb0c0190fec5276470d7a3958e59c8e9e83437ce074c5e
GET /images/payment/verified.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: image/png
content-length: 15907
last-modified: Wed, 01 Feb 2023 08:21:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
mcutstyr2-i03.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19740_DANE_DANE_Lyngby_Air_Gore-Tex_PRO-Shell_1.jpg/w800h532.jpg
54.230.111.74200 OK 12 kB URL HTTP/2 mcutstyr2-i03.mycdn.no/mysimgprod/mcutstyr2_mystore_no/images/19740_DANE_DANE_Lyngby_Air_Gore-Tex_PRO-Shell_1.jpg/w800h532.jpg
IP 54.230.111.74:0
File type JPEG image data, baseline, precision 8, 800x532, components 3\012- data
Hash 21729018a1bc793799eed7bc3a74c679
b5975275a5807eac17a89dacf235ad33583d0e6a
232724521de5f3b4562aab7947aa67fc2f5c5a5186341b4f68ad1257d3301ab8
GET /mysimgprod/mcutstyr2_mystore_no/images/19740_DANE_DANE_Lyngby_Air_Gore-Tex_PRO-Shell_1.jpg/w800h532.jpg HTTP/1.1
Host: mcutstyr2-i03.mycdn.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12008
last-modified: Thu, 28 Oct 2021 16:33:39 GMT
server: AmazonS3
date: Wed, 01 Feb 2023 08:54:41 GMT
etag: "21729018a1bc793799eed7bc3a74c679"
x-cache: RefreshHit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LsIGlk6xjAsBMVtHObsd5XA9k-R3a_abJBaUJTbpx4PAkmUJRli_6g==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 211960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 71134
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mc-utstyr.no/templates/clean/fonts/fontawesome-webfont.woff2?v=4.3.0
52.17.124.116200 OK 57 kB URL HTTP/2 www.mc-utstyr.no/templates/clean/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 52.17.124.116:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /templates/clean/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.mc-utstyr.no/global.css.php?version=a1675062519&host=mcutstyr2_mystore_no
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090; kk_leadtag=true; kelkooId=a4c629a-1860c2f6b52-1634bd
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-length: 56780
last-modified: Wed, 01 Feb 2023 08:21:17 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 12:49:39 GMT
expires: Sun, 28 Jan 2024 12:49:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 331501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd7f384052345bd8fc750307d7522395
82d864bbbb57ab178e7924ac6996d5efabb58ad1
b8b85a23952e9d04c80d5a7ae4638f86c410f9ef37c778659509b0c7545b6ac6
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4416
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Last-Modified: Wed, 01 Feb 2023 07:41:04 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd7f384052345bd8fc750307d7522395
82d864bbbb57ab178e7924ac6996d5efabb58ad1
b8b85a23952e9d04c80d5a7ae4638f86c410f9ef37c778659509b0c7545b6ac6
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5041
Cache-Control: max-age=122412
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:40 GMT
Etag: "63d9504b-1d7"
Expires: Thu, 02 Feb 2023 18:54:52 GMT
Last-Modified: Tue, 31 Jan 2023 17:30:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
s.kelkoogroup.net/k.gif
185.60.164.26200 OK 0 B IP 185.60.164.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: etag
Referer: https://www.mc-utstyr.no/
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: 2f1af413-3a9c-4b80-9af4-133a9c5b808d
X-Gravitee-Request-Id: 2f1af413-3a9c-4b80-9af4-133a9c5b808d
Vary: Origin
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://www.mc-utstyr.no
Access-Control-Allow-Headers: etag
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Wed, 01 Feb 2023 08:54:40 GMT
content-length: 0
s.kelkoogroup.net/k.gif
185.60.164.26200 OK 43 B IP 185.60.164.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ETag: a2Vsa29vSWQ9YTRjNjI5YS0xODYwYzJmNmI1Mi0xNjM0YmQ=
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: f2faa02b-0e01-4d7f-baa0-2b0e012d7fec
X-Gravitee-Request-Id: f2faa02b-0e01-4d7f-baa0-2b0e012d7fec
ETag: a2Vsa29vSWQ9YTRjNjI5YS0xODYwYzJmNmI1Mi0xNjM0YmQ=
Vary: *,Origin
Pragma: no-cache
Expires: 0
Request-Time: 0
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate
Last-Modified: Fri, 01 Jan 2010 00:00:00 GMT
Access-Control-Allow-Origin: https://www.mc-utstyr.no
Access-Control-Expose-Headers: ETag
Access-Control-Allow-Credentials: true
Date: Wed, 01 Feb 2023 08:54:40 GMT
Content-Type: image/gif
content-length: 43
www.mc-utstyr.no/users/mcutstyr2_mystore_no/logo/favicon1.png
52.17.124.116200 OK 3.0 kB URL HTTP/2 www.mc-utstyr.no/users/mcutstyr2_mystore_no/logo/favicon1.png
IP 52.17.124.116:0
File type PNG image data, 82 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash dd96300ce0e1d13a538c063314de2f62
3097638cb33a9d09d110958a9e229d33e56be991
5885bc255c61ee199e4a94c2ccdfeda09a48d2780fca0f3095758b993460db3b
GET /users/mcutstyr2_mystore_no/logo/favicon1.png HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090; kk_leadtag=true; kelkooId=a4c629a-1860c2f6b52-1634bd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:41 GMT
content-type: image/png
content-length: 2990
last-modified: Wed, 07 Mar 2018 09:34:51 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:41 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdbf000f99c93d77c5169461da113540
a04cfd05dbda17eba5660db0fcdeeef482af339a
152308cc51f2263be54334999586abda3f7c0652abe171ecbc8839b1cc578a29
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 717cf52cfdc9e790ae36f7a4e1d19d16
03b71415f75565d67d059f1046fa363be72245e5
f76f4406c8796751e4b51ecff884ff3b3ea2bff4c60b6a8941d68b31951b4541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4677
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Etag: "63d9d8af-1d7"
Last-Modified: Wed, 01 Feb 2023 07:36:44 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/nb_NO/all.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/nb_NO/all.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash dea0fed182b3ac8faaa847e095a4f6f6
98f117ce104627e9794218aa2b742b03a87d298c
963a30a37d3d6effa36cf63c003deed25c39bc0b4fe29cb77649238ef753ed8a
GET /nb_NO/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 734d85bd0a08a5a845eabbcd3f35f914
etag: "f3a737dceada73a81bbea7c0b3bf1ef0"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 01 Feb 2023 09:03:18 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 3qD+0YKzrI+qqEfglaT29g==
x-fb-debug: koOT0XVLTf9zziu9sDbyOn4pZrrcn+L9iRTeEcYfY3ZwcFiaWZUzuEsgpDdp0EhkTneMPJLaAWMyV/E5EIFJkw==
content-length: 1687
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 08:54:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 07:45:20 GMT
expires: Wed, 01 Feb 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 4161
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash f8971f3ad662af35a2ca6871f8c78482
35a0b814d6ecec8deacc9aea87ce9be62b15d92b
a438d380bab44504b1ff13673a0e041c6ac6645d03926e7f076465d1fe049765
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Wed, 01 Feb 2023 08:54:41 GMT
expires: Wed, 01 Feb 2023 08:54:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9dea963ca1c75dde"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 717cf52cfdc9e790ae36f7a4e1d19d16
03b71415f75565d67d059f1046fa363be72245e5
f76f4406c8796751e4b51ecff884ff3b3ea2bff4c60b6a8941d68b31951b4541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4677
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Etag: "63d9d8af-1d7"
Last-Modified: Wed, 01 Feb 2023 07:36:44 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
172.217.21.174200 OK 37 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (2076)
Hash 7099d396900a9324eb53bb40e0b6d5ba
a5eaebd02c0b98bac1cf616128a47ce38ccad0dc
088df9b400da01f8f6e195a10c60b264fee9cc19a3ac5c0495200538a2cb5006
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 36643
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 12:31:44 GMT
expires: Thu, 25 Jan 2024 12:31:44 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 591777
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 53 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (1448)
Hash 0352bb776d2cb7e28ed4294ef240bc8e
8a00fccf1aa5746c76e7c9053a9d64d0be917de5
3f6a4eab3c990f88af494e19777e6f8131065e9d2a412806579eaeb7c8e51fa7
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 52558
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:39:41 GMT
expires: Wed, 31 Jan 2024 06:39:41 GMT
cache-control: public, max-age=31536000
age: 94500
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=no&origin=https%3A%2F%2Fwww.mc-utstyr.no&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
172.217.21.174301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=no&origin=https%3A%2F%2Fwww.mc-utstyr.no&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=no&origin=https%3A%2F%2Fwww.mc-utstyr.no&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 08:54:41 GMT
expires: Wed, 01 Feb 2023 09:24:41 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/nb_NO/all.js?hash=1067a5800aa0243fec2867118fa768d0
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/nb_NO/all.js?hash=1067a5800aa0243fec2867118fa768d0
IP 157.240.205.11:0
File type ASCII text, with very long lines (18605)
Hash 91fb514bf60e78ec6e7bb7081aeaa363
9d55c90c61bd847a7865342263c0f588448702b4
369fee9da9a62af703af0b54371252843607dd4e568423aae5e057b1cdd683ab
GET /nb_NO/all.js?hash=1067a5800aa0243fec2867118fa768d0 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: aff886034176ced6bcc628f0a5b282ea
etag: "772d2452fa3cfd8256374ad238e54741"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 01 Feb 2024 07:40:12 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: kftRS/YOeOxue7cIGuqjYw==
x-fb-debug: fGApJypbdJkvZuXEb5GAo7KNAZrJk1lqZOfzMJdNTCYjuMdh1HYdYa1oI4ulj91K/EiLFTVJO55ArRK3BHR2Jg==
content-length: 88350
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 08:54:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csi.gstatic.com/csi?v=3&s=gapi_module&action=plusone&it=mli.110,mei.12&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt=
216.239.32.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=3&s=gapi_module&action=plusone&it=mli.110,mei.12&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt=
IP 216.239.32.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=3&s=gapi_module&action=plusone&it=mli.110,mei.12&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt= HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=3&s=gapi_module&action=auth___plusone&it=mli.68,mei.1&e=abc_l0,abc_m0,abc_pauth___plusone,abc_u0&rt=
216.239.32.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=3&s=gapi_module&action=auth___plusone&it=mli.68,mei.1&e=abc_l0,abc_m0,abc_pauth___plusone,abc_u0&rt=
IP 216.239.32.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=3&s=gapi_module&action=auth___plusone&it=mli.68,mei.1&e=abc_l0,abc_m0,abc_pauth___plusone,abc_u0&rt= HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=3&s=gapi_global&action=global&it=blt.0,psi.5&srt=536&e=abc_l0,abc_m0,abc_u0&rt=
216.239.32.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=3&s=gapi_global&action=global&it=blt.0,psi.5&srt=536&e=abc_l0,abc_m0,abc_u0&rt=
IP 216.239.32.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=3&s=gapi_global&action=global&it=blt.0,psi.5&srt=536&e=abc_l0,abc_m0,abc_u0&rt= HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 74fb517f26359326e41f69c0c1826bd1
693f1fb0a1147db8e73c59700630c3da71b1a1ba
9fd11f32aefbb6191356ef10775629a52e420bbce09f95b363f8ef30479c37b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/833441087/?random=1675241701976&cv=11&fst=1675241701976&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&auid=1486692144.1675241702&data=event%3Dview_item%3Bid%3D4012&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/833441087/?random=1675241701976&cv=11&fst=1675241701976&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&auid=1486692144.1675241702&data=event%3Dview_item%3Bid%3D4012&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2533), with no line terminators
Hash a2ccdb08a5c4505e73680d4134cba60e
3831b3475a942c79e9c607aa9068acb00e6d7c5b
39424b5c1d8da0c1a728b0a74d9f3aef56efe2d8eaaca08323eba35123e9e836
GET /pagead/viewthroughconversion/833441087/?random=1675241701976&cv=11&fst=1675241701976&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&auid=1486692144.1675241702&data=event%3Dview_item%3Bid%3D4012&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1085
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 09:09:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/833441087/?random=1675241701968&cv=11&fst=1675241701968&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&auid=1486692144.1675241702&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/833441087/?random=1675241701968&cv=11&fst=1675241701968&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&auid=1486692144.1675241702&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2431), with no line terminators
Hash ebeb4b7978d4f30997827387e0029de5
49a4568a43e35fbc9e7e148decd3dc0420ac7e13
cc8c57fcb4b4f90c3ad4de3dd5a8ab671cc33d49bc2daf9e9e268f329b5ec98d
GET /pagead/viewthroughconversion/833441087/?random=1675241701968&cv=11&fst=1675241701968&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&auid=1486692144.1675241702&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1051
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 09:09:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833441087/?random=1675241701976&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&value=6990¤cy_code=NOK&data=event%3Dview_item%3Bid%3D4012&fmt=3&is_vtc=1&random=4188263493&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833441087/?random=1675241701968&cv=11&fst=1675238400000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=DANE%20Lyngby%20Air%20Gore-Tex%20PRO-Shell%20-%20MC-UTSTYR&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4008218123&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 08:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 22:24:54 GMT
expires: Sun, 28 Jan 2024 22:24:54 GMT
cache-control: public, max-age=31536000
age: 296987
last-modified: Sat, 21 Jan 2023 03:10:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/x/oauth/status?client_id=138255156243557&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&sdk=joey&wants_cookie_data=true
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=138255156243557&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&sdk=joey&wants_cookie_data=true
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=138255156243557&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.mc-utstyr.no%2Fproducts%2Fdane-lyngby-air-gore-tex-pro%3Fkk%3Da4c629a-1860c2f6b52-1634bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DDANE%2BDane%2BLyngby%2BAir%2BGore-Tex%2BPro-Shell&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mc-utstyr.no/
Origin: https://www.mc-utstyr.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: https://www.mc-utstyr.no
fb-s: unknown
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
strict-transport-security: max-age=15552000; preload
x-fb-debug: M0GvosTYN3oktAdqM7kMkZRnZl7nZBSBwUVA0TPZ2sNAOiJrH7jnfCR7AL95BRjTuk8qI3H/VxVIO9UM5wgEJw==
content-length: 0
date: Wed, 01 Feb 2023 08:54:41 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.mc-utstyr.no/users/themeeuropa_mystore_no/templates/europa/js/paris.bundle.js?v=2
52.17.124.116200 OK 0 B URL HTTP/2 www.mc-utstyr.no/users/themeeuropa_mystore_no/templates/europa/js/paris.bundle.js?v=2
IP 52.17.124.116:0
GET /users/themeeuropa_mystore_no/templates/europa/js/paris.bundle.js?v=2 HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 12:06:29 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 08:54:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mc-utstyr.no/global.css.php?version=a1675062519&host=mcutstyr2_mystore_no
52.17.124.116200 OK 0 B URL HTTP/2 www.mc-utstyr.no/global.css.php?version=a1675062519&host=mcutstyr2_mystore_no
IP 52.17.124.116:0
GET /global.css.php?version=a1675062519&host=mcutstyr2_mystore_no HTTP/1.1
Host: www.mc-utstyr.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/products/dane-lyngby-air-gore-tex-pro?kk=a4c629a-1860c2f6b52-1634bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=DANE+Dane+Lyngby+Air+Gore-Tex+Pro-Shell
Cookie: digistore_custid=iovi41tj4h0kok8bdmubulb090
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:54:40 GMT
content-type: text/css; Charset: UTF-8;charset=iso-8859-1
expires: Wed, 08 Feb 2023 08:54:40 GMT
pragma: cache
cache-control: max-age=604800
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
X-Firefox-Spdy: h2
x.klarnacdn.net/payment-method/assets/badges/generic/white/klarna.svg
54.230.111.20200 OK 0 B URL HTTP/2 x.klarnacdn.net/payment-method/assets/badges/generic/white/klarna.svg
IP 54.230.111.20:0
GET /payment-method/assets/badges/generic/white/klarna.svg HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 25 Jan 2023 20:06:38 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 18 Oct 2022 11:44:39 GMT
etag: W/"3758d80b7e5fb6ce4f6a2d5084139737"
cache-control: public,max-age=604800
x-amz-version-id: 2DlNkGsT35186asrFH0Ckl7JQnHKoi79
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZBVACkUwXFiXQGXjS1U5kp66R3l-b25jXX4w0aKKbSp3K_CowvPYHQ==
age: 564483
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.mc-utstyr.no&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
142.250.74.109200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.mc-utstyr.no&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 142.250.74.109:0
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.mc-utstyr.no&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Feb 2023 08:54:41 GMT
content-security-policy: script-src 'nonce-KnMjiTCsRjFVqRGbKXd2qQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,700,700i
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,700,700i
IP 142.250.74.106:0
GET /css?family=Roboto:300,300i,400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mc-utstyr.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 08:54:40 GMT
date: Wed, 01 Feb 2023 08:54:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2