504 B IP
ASN #20940 Akamai International B.V.
Hash b5fba3de48fd6c409033029700670f78
0e348372969c771ca1d5f0ae6a944eb21c7ede05
86d583a273489c4b3d93bc10e3fa9718746ba439c1d88533f0177dec4c7183ce
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "86D583A273489C4B3D93BC10E3FA9718746BA439C1D88533F0177DEC4C7183CE"
Last-Modified: Tue, 08 Oct 2024 22:04:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4686
Expires: Wed, 09 Oct 2024 04:12:32 GMT
Date: Wed, 09 Oct 2024 02:54:26 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 94a2d5e693f71770bd013db51ee0fbbe
2f5b5bd658d11088f0599e5f244740d0d8667bea
a4b45c1833f63c69b1847216d9dd0bbfc4f95f33501d88e7dc5555648f019595
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A4B45C1833F63C69B1847216D9DD0BBFC4F95F33501D88E7DC5555648F019595"
Last-Modified: Tue, 08 Oct 2024 12:10:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20216
Expires: Wed, 09 Oct 2024 08:31:22 GMT
Date: Wed, 09 Oct 2024 02:54:26 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 33985775df7b619cb33f4050d88c5fb9
cf0b2ff92cd2f7e12ce788a164a73d75dea5da83
b6db380f5eeb73aa56abf90afa43b52cc9f51b01f33ad1eefeccc473a41ffb86
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B6DB380F5EEB73AA56ABF90AFA43B52CC9F51B01F33AD1EEFECCC473A41FFB86"
Last-Modified: Tue, 08 Oct 2024 11:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4649
Expires: Wed, 09 Oct 2024 04:11:55 GMT
Date: Wed, 09 Oct 2024 02:54:26 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash b22f67a0670898071dd36e20af343d02
af1b019cbcc7bf5d155aee6cabd44cbbf6bba802
a4dffbb01f804e46d7a450a7220e281b8a774514576df38bbba37bac6fdc5ec8
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A4DFFBB01F804E46D7A450A7220E281B8A774514576DF38BBBA37BAC6FDC5EC8"
Last-Modified: Tue, 08 Oct 2024 04:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3253
Expires: Wed, 09 Oct 2024 03:48:40 GMT
Date: Wed, 09 Oct 2024 02:54:27 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash ee8a3075e7c2e453a0e7ecb6d0ffb710
8207b3beb4c30142e41563a15cc410ecab5f61a8
af0c2421d7af6507eb62dfa55b8dd2c1f969ca02692e89d3bf841cb42430ebe1
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "AF0C2421D7AF6507EB62DFA55B8DD2C1F969CA02692E89D3BF841CB42430EBE1"
Last-Modified: Tue, 08 Oct 2024 12:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 09 Oct 2024 03:46:04 GMT
Date: Wed, 09 Oct 2024 02:54:27 GMT
Connection: keep-alive
7.3 kB URL rafkxx.com/images/play-2/icon1.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Hash 3d0ab5834c8bf7134e4d21fa3288317f
c31d1a6b9df206f67ea194f4c424cdc372a423c2
0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon1.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 7252
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-1c54"
x-zone: eu3
accept-ranges: bytes
X-Firefox-Spdy: h2
4.6 kB URL rafkxx.com/images/play-2/icon2.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Hash c947d439eb93367f1af5b2a3d222f057
5b4c10820d39e624bc6df72a113679da80a8e44e
aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon2.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 4576
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-11e0"
x-zone: eu4
accept-ranges: bytes
X-Firefox-Spdy: h2
7.8 kB URL rafkxx.com/images/play-2/icon3.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Hash 8f3cc830da0b1fdf66bda7d1d734747b
94588f041eec3a78a8780c8124c56a1434a89277
ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon3.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 7847
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-1ea7"
x-zone: eu3
accept-ranges: bytes
X-Firefox-Spdy: h2
7.0 kB URL rafkxx.com/images/play-2/icon4.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Hash 7ad7f32c1c0df7b4975cc41bda4ac435
81d57e996ee6cd9e122592e68ffa3d55c1ba10ff
c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon4.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 7032
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-1b78"
x-zone: eu4
accept-ranges: bytes
X-Firefox-Spdy: h2
3.3 kB URL rafkxx.com/images/play-2/icon5.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Hash 1e1a7582b5da63e10485d63f97abc9a0
ca3ee3067f96c732f455bc7c99ec5100194f13f6
196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon5.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 3264
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-cc0"
x-zone: eu
accept-ranges: bytes
X-Firefox-Spdy: h2
3.3 kB URL rafkxx.com/images/play-2/icon7.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Hash b512735542cb07b3b2dcf153a7dfe456
93bde8875412ce266600e2af1c37123483a50376
e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon7.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 3283
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-cd3"
x-zone: eu3
accept-ranges: bytes
X-Firefox-Spdy: h2
4.1 kB URL rafkxx.com/images/play-2/icon8.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Hash f92d6474ebc6a3a0b576749cfb4afe98
0f4ce3dcf04873b8098c01d20c44967fb9fce0cc
3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/play-2/icon8.png HTTP/1.1
Host: rafkxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=intent://rafkxx.com/play-2_1?h=waWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTksInNyYyI6Mn0=eyJ&click_id=751172814&si1=&si2=
Cookie: truniq=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: image/png
content-length: 4064
last-modified: Mon, 30 Sep 2024 15:37:32 GMT
etag: "66fac5bc-fe0"
x-zone: eu
accept-ranges: bytes
X-Firefox-Spdy: h2
0 B URL mdakky.com/rpe?a=1&s=1&act=18&src=2&p=1013896&st=1161224&wd=378699&d=rafkxx.com&tpl=78&rnd=0.3881518596780791&sbid=&sbid2=intent%3A%2F%2Frafkxx.com%2Fplay-2_1
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /rpe?a=1&s=1&act=18&src=2&p=1013896&st=1161224&wd=378699&d=rafkxx.com&tpl=78&rnd=0.3881518596780791&sbid=&sbid2=intent%3A%2F%2Frafkxx.com%2Fplay-2_1 HTTP/1.1
Host: mdakky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rafkxx.com
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
X-Firefox-Spdy: h2
1.4 kB URL wokoez.com/cuclc?aid=14422526482849809437&t=1728442467&s=211
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (1432), with no line terminators
Hash eeb7abcfb0e7515252aa6ff65094a330
d7fcaccd1c1d4d0818aa1191323ae8485dfeaae9
9119e86d858d42a91aef273066e3441fbeda67e3d41800229ce5f0f0fb1441bb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cuclc?aid=14422526482849809437&t=1728442467&s=211 HTTP/1.1
Host: wokoez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rafkxx.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0
date: Wed, 09 Oct 2024 02:54:28 GMT
content-type: text/html; charset=utf-8
content-length: 1432
location: https://s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_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
X-Firefox-Spdy: h2
1.4 kB URL s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_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
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document, ASCII text, with very long lines (1963)
Hash a74e22550bcb5ec5ea796f6c9184580a
3dcdf569d03a4575f063542a75666662e1d3b3ca
2d218e57ae8a5ba2a5ba717abd7639446cd83f760c97be57e5cc4314f68e870a
GET /cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_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 HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rafkxx.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 09 Oct 2024 02:54:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226705f0642245a4.961779472660910601%22%3B%7D; expires=Fri, 09 Oct 2026 02:54:28 GMT; path=; domain=.optnx.com; Secure; SameSite=none
Accept-Ch: Sec-Ch-Ua,Sec-Ch-Ua-Mobile,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Full-Version-list,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Bitness,Sec-Ch-Ua-Arch
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
GET s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_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&p=https%3A%2F%2Frafkxx.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1280x1024&iframe=0
302 Found 0 B URL User Request GET HTTP/1.1 s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_a2V5PWR2eTQ1MnN2OHgzYXZmOTRsdnhtJnRhZz1vcGRkTkhkTEhUUEhOVlM0QVNPcW9scHBvbmROTFRWYlZQYks2VnpxcHBuVXpPb2ROVTZWMHJwWFQxVVUwdW9tcm9wdGxkUk5WTlhQWTZWMHpwWFN1bGRLNlowcnBYVE9tcHRxbWxtbWxwZFZyclR2YnJyeExiTHR2VFJOYm5YcHRuclhkeFZ4THBZNmFhdWFlZWwwMDFjMDg5TWU2TTlzMFI2aF9jNTBycFhTdWxkSzZWMHJwWFN1bXNudHBwbnByc2M1MHJwWFN1bGRLNlYwcnBYU3VsZE02ZXlmWGVXdlNqU1dmT3Fuak82ZlMyek9lNldxbTJpV1Z3ZlkmY29zdD0wLjAwMDImc291cmNlPWV2YWRhdi5jb20mdmFyaWQ9MTA0NTg1MjgwJmNhbXBpZD02ODc0MzQ2JnNpdGVpZD0xMDI1MzE2JnpvbmVpZD01MzA0NDMyJmNhdGlkPTUxMSZjb3VudHJ5PU5PUiZmb3JtYXQ9fGh0dHBzfDkxLjkwLjQyLjE1NHxOT1J8NDF8ZXZhZGF2LmNvbXw5MDc0MDB8ODM5NDIyfDEwMjUzMTZ8NTMwNDQzMnw1MTF8Njg3NDM0NnwxMDQ1ODUyODB8MTV8M3wwfDB8MjUzNDR8MTE2MTIyNHwyMHw3MHxVU0R8VVNEfDF8MXwyMnx8MXxOT1J8fDc0fDR8MXx8MTQ4NTEwMTEwNHw1Y2M0ZThjY2YwODBkZTQzMThhNmJkYWM2OWY1ZjBiN3wxfDB8MTE2MTIyNC5ldmFkYXYuY29tfDB8MHwwfDAuMDF8MXwwfGV4Y2hhbmdlX2xpbmt8MHwwfDMxNjM0ODB8LTF8MHwzMTUxNjI3fHx8M3wxNDQwfHwwfDB8MHwwfDB8MHwxfDB8fDh8MXxNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMHx8MjE2MHw3fDB8MXwwfHx8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MXwyfE9LfGRiZjI2OGRjNmRjMjk1NDIwODdlZTE4YTQ0MjJkZWY1&p=https%3A%2F%2Frafkxx.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1280x1024&iframe=0
IP
ASN #60781 LeaseWeb Netherlands B.V.
Certificate IssuerLet's Encrypt
Subjectoptnx.com
FingerprintAE:04:19:29:1D:FA:49:D6:51:BB:0F:91:90:E2:CE:91:31:12:C9:50
ValidityThu, 12 Sep 2024 10:32:46 GMT - Wed, 11 Dec 2024 10:32:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_a2V5PWR2eTQ1MnN2OHgzYXZmOTRsdnhtJnRhZz1vcGRkTkhkTEhUUEhOVlM0QVNPcW9scHBvbmROTFRWYlZQYks2VnpxcHBuVXpPb2ROVTZWMHJwWFQxVVUwdW9tcm9wdGxkUk5WTlhQWTZWMHpwWFN1bGRLNlowcnBYVE9tcHRxbWxtbWxwZFZyclR2YnJyeExiTHR2VFJOYm5YcHRuclhkeFZ4THBZNmFhdWFlZWwwMDFjMDg5TWU2TTlzMFI2aF9jNTBycFhTdWxkSzZWMHJwWFN1bXNudHBwbnByc2M1MHJwWFN1bGRLNlYwcnBYU3VsZE02ZXlmWGVXdlNqU1dmT3Fuak82ZlMyek9lNldxbTJpV1Z3ZlkmY29zdD0wLjAwMDImc291cmNlPWV2YWRhdi5jb20mdmFyaWQ9MTA0NTg1MjgwJmNhbXBpZD02ODc0MzQ2JnNpdGVpZD0xMDI1MzE2JnpvbmVpZD01MzA0NDMyJmNhdGlkPTUxMSZjb3VudHJ5PU5PUiZmb3JtYXQ9fGh0dHBzfDkxLjkwLjQyLjE1NHxOT1J8NDF8ZXZhZGF2LmNvbXw5MDc0MDB8ODM5NDIyfDEwMjUzMTZ8NTMwNDQzMnw1MTF8Njg3NDM0NnwxMDQ1ODUyODB8MTV8M3wwfDB8MjUzNDR8MTE2MTIyNHwyMHw3MHxVU0R8VVNEfDF8MXwyMnx8MXxOT1J8fDc0fDR8MXx8MTQ4NTEwMTEwNHw1Y2M0ZThjY2YwODBkZTQzMThhNmJkYWM2OWY1ZjBiN3wxfDB8MTE2MTIyNC5ldmFkYXYuY29tfDB8MHwwfDAuMDF8MXwwfGV4Y2hhbmdlX2xpbmt8MHwwfDMxNjM0ODB8LTF8MHwzMTUxNjI3fHx8M3wxNDQwfHwwfDB8MHwwfDB8MHwxfDB8fDh8MXxNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMHx8MjE2MHw3fDB8MXwwfHx8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MXwyfE9LfGRiZjI2OGRjNmRjMjk1NDIwODdlZTE4YTQ0MjJkZWY1&p=https%3A%2F%2Frafkxx.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1280x1024&iframe=0 HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_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
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226705f0642245a4.961779472660910601%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 09 Oct 2024 02:54:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226705f0642245a4.961779472660910601%22%3B%7D; expires=Fri, 09 Oct 2026 02:54:28 GMT; path=; domain=.optnx.com; Secure; SameSite=none
c-tag=%7B%22tag-link%22%3A%22v4%7C%7CNOR%7C5304432%7C104585280%7C0%7C%7C511%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3163480%7C3151627%7C0%7C0%7C13%7C4096%7C0%7C0%7C1%7C0%7C0%7C1%7C6705f0642245a4.961779472660910601%7C5cc4e8ccf080de4318a6bdac69f5f0b7%7C1161224%7C1161224.evadav.com%7C1280x1024%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1728442468%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1%7C47b0912fd85482235bbba24d45ba0f6f%7Cok%22%7D; expires=Tue, 07 Jan 2025 02:54:28 GMT; path=/; domain=.optnx.com; Secure; SameSite=none
Location: https://craftersden.store/c2c9l4k.php?key=dvy452sv8x3avf94lvxm&tag=opddNHdLHTPHNVS4ASOqolppondNLTVbVPbK6VzqppnUzOodNU6V0rpXT1UU0uomroptldRNVNXPY6V0zpXSuldK6Z0rpXTOmptqmlmmlpdVrrTvbrrxLbLtvTRNbnXptnrXdxVxLpY6aauaeel001c089Me6M9s0R6h_c50rpXSuldK6V0rpXSumsntppnprsc50rpXSuldK6V0rpXSuldM6eyfXeWvSjSWfOqnjO6fS2zOe6Wqm2iWVwfY&cost=0.0002&source=evadav.com&varid=104585280&campid=6874346&siteid=1025316&zoneid=5304432&catid=511&country=NOR&format=&exffir=eyJjIjoiNDk4MmQ3NGNjNTk0NWViNWY0NDNjYmVhYjhjMjljOGMiLCJ0IjoiMSIsInNyIjoiMTI4MHgxMDI0IiwiY3IiOiIxMjgweDEwMjQiLCJpIjoiMCJ9
X-Robots-Tag: noindex, follow
0 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.optnx.com/cimp.php?data=TVRjeU9EUTBNalEyTjN4bFlqbGxOR1EzTmpNMVlUUXhOalV6WVRobFlqVmtNR1V4WW1ZNE1UbG1NUS0tfGh0dHBzOi8vY3JhZnRlcnNkZW4uc3RvcmUvYzJjOWw0ay5waHA_a2V5PWR2eTQ1MnN2OHgzYXZmOTRsdnhtJnRhZz1vcGRkTkhkTEhUUEhOVlM0QVNPcW9scHBvbmROTFRWYlZQYks2VnpxcHBuVXpPb2ROVTZWMHJwWFQxVVUwdW9tcm9wdGxkUk5WTlhQWTZWMHpwWFN1bGRLNlowcnBYVE9tcHRxbWxtbWxwZFZyclR2YnJyeExiTHR2VFJOYm5YcHRuclhkeFZ4THBZNmFhdWFlZWwwMDFjMDg5TWU2TTlzMFI2aF9jNTBycFhTdWxkSzZWMHJwWFN1bXNudHBwbnByc2M1MHJwWFN1bGRLNlYwcnBYU3VsZE02ZXlmWGVXdlNqU1dmT3Fuak82ZlMyek9lNldxbTJpV1Z3ZlkmY29zdD0wLjAwMDImc291cmNlPWV2YWRhdi5jb20mdmFyaWQ9MTA0NTg1MjgwJmNhbXBpZD02ODc0MzQ2JnNpdGVpZD0xMDI1MzE2JnpvbmVpZD01MzA0NDMyJmNhdGlkPTUxMSZjb3VudHJ5PU5PUiZmb3JtYXQ9fGh0dHBzfDkxLjkwLjQyLjE1NHxOT1J8NDF8ZXZhZGF2LmNvbXw5MDc0MDB8ODM5NDIyfDEwMjUzMTZ8NTMwNDQzMnw1MTF8Njg3NDM0NnwxMDQ1ODUyODB8MTV8M3wwfDB8MjUzNDR8MTE2MTIyNHwyMHw3MHxVU0R8VVNEfDF8MXwyMnx8MXxOT1J8fDc0fDR8MXx8MTQ4NTEwMTEwNHw1Y2M0ZThjY2YwODBkZTQzMThhNmJkYWM2OWY1ZjBiN3wxfDB8MTE2MTIyNC5ldmFkYXYuY29tfDB8MHwwfDAuMDF8MXwwfGV4Y2hhbmdlX2xpbmt8MHwwfDMxNjM0ODB8LTF8MHwzMTUxNjI3fHx8M3wxNDQwfHwwfDB8MHwwfDB8MHwxfDB8fDh8MXxNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMHx8MjE2MHw3fDB8MXwwfHx8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MHwwfDB8MXwyfE9LfGRiZjI2OGRjNmRjMjk1NDIwODdlZTE4YTQ0MjJkZWY1
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226705f0642245a4.961779472660910601%22%3B%7D; c-tag=%7B%22tag-link%22%3A%22v4%7C%7CNOR%7C5304432%7C104585280%7C0%7C%7C511%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3163480%7C3151627%7C0%7C0%7C13%7C4096%7C0%7C0%7C1%7C0%7C0%7C1%7C6705f0642245a4.961779472660910601%7C5cc4e8ccf080de4318a6bdac69f5f0b7%7C1161224%7C1161224.evadav.com%7C1280x1024%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1728442468%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1%7C47b0912fd85482235bbba24d45ba0f6f%7Cok%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 09 Oct 2024 02:54:28 GMT
Connection: keep-alive
X-Robots-Tag: noindex, follow
GET craftersden.store/c2c9l4k.php?key=dvy452sv8x3avf94lvxm&tag=opddNHdLHTPHNVS4ASOqolppondNLTVbVPbK6VzqppnUzOodNU6V0rpXT1UU0uomroptldRNVNXPY6V0zpXSuldK6Z0rpXTOmptqmlmmlpdVrrTvbrrxLbLtvTRNbnXptnrXdxVxLpY6aauaeel001c089Me6M9s0R6h_c50rpXSuldK6V0rpXSumsntppnprsc50rpXSuldK6V0rpXSuldM6eyfXeWvSjSWfOqnjO6fS2zOe6Wqm2iWVwfY&cost=0.0002&source=evadav.com&varid=104585280&campid=6874346&siteid=1025316&zoneid=5304432&catid=511&country=NOR&format=&exffir=eyJjIjoiNDk4MmQ3NGNjNTk0NWViNWY0NDNjYmVhYjhjMjljOGMiLCJ0IjoiMSIsInNyIjoiMTI4MHgxMDI0IiwiY3IiOiIxMjgweDEwMjQiLCJpIjoiMCJ9
302 Found 552 B URL User Request GET HTTP/2 craftersden.store/c2c9l4k.php?key=dvy452sv8x3avf94lvxm&tag=opddNHdLHTPHNVS4ASOqolppondNLTVbVPbK6VzqppnUzOodNU6V0rpXT1UU0uomroptldRNVNXPY6V0zpXSuldK6Z0rpXTOmptqmlmmlpdVrrTvbrrxLbLtvTRNbnXptnrXdxVxLpY6aauaeel001c089Me6M9s0R6h_c50rpXSuldK6V0rpXSumsntppnprsc50rpXSuldK6V0rpXSuldM6eyfXeWvSjSWfOqnjO6fS2zOe6Wqm2iWVwfY&cost=0.0002&source=evadav.com&varid=104585280&campid=6874346&siteid=1025316&zoneid=5304432&catid=511&country=NOR&format=&exffir=eyJjIjoiNDk4MmQ3NGNjNTk0NWViNWY0NDNjYmVhYjhjMjljOGMiLCJ0IjoiMSIsInNyIjoiMTI4MHgxMDI0IiwiY3IiOiIxMjgweDEwMjQiLCJpIjoiMCJ9
IP
Certificate IssuerGoogle Trust Services
Subjectcraftersden.store
FingerprintB8:C5:E9:34:92:19:3B:B2:50:FB:C5:92:55:7F:9C:C9:21:77:28:7F
ValidityFri, 06 Sep 2024 09:30:53 GMT - Thu, 05 Dec 2024 09:30:52 GMT
File type gzip compressed data, from Unix
Hash f93448dc1447e868b58cbb3b88b6b7ba
a6d590f7a37575286cfba661188e2c2de4a663b0
c31950537fcf4d3453a12f4db9d9fce8fcc0efcc211563a797db3353890f6ce0
GET /c2c9l4k.php?key=dvy452sv8x3avf94lvxm&tag=opddNHdLHTPHNVS4ASOqolppondNLTVbVPbK6VzqppnUzOodNU6V0rpXT1UU0uomroptldRNVNXPY6V0zpXSuldK6Z0rpXTOmptqmlmmlpdVrrTvbrrxLbLtvTRNbnXptnrXdxVxLpY6aauaeel001c089Me6M9s0R6h_c50rpXSuldK6V0rpXSumsntppnprsc50rpXSuldK6V0rpXSuldM6eyfXeWvSjSWfOqnjO6fS2zOe6Wqm2iWVwfY&cost=0.0002&source=evadav.com&varid=104585280&campid=6874346&siteid=1025316&zoneid=5304432&catid=511&country=NOR&format=&exffir=eyJjIjoiNDk4MmQ3NGNjNTk0NWViNWY0NDNjYmVhYjhjMjljOGMiLCJ0IjoiMSIsInNyIjoiMTI4MHgxMDI0IiwiY3IiOiIxMjgweDEwMjQiLCJpIjoiMCJ9 HTTP/1.1
Host: craftersden.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.optnx.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 09 Oct 2024 02:54:28 GMT
content-type: text/html; charset=UTF-8
location: https://www.linkbux.com/track/8c04JITxTELG9VBhdffzO6huThWSGUxNql8WGg_atoswbTlvrGHHFeg0gVb84OtBqWqVaLpI7irRm?url=https%3A%2F%2Fwww.lineahjemme.no&uid=4de4ad5b73vvrf31&uid2={sub1}
set-cookie: uclick=d5b73vvr; expires=Thu, 10 Oct 2024 02:54:28 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=d5b73vvr-d5b73vvr-7v-0-oj-7vvr-8r3y-d51fc6; expires=Thu, 10 Oct 2024 02:54:28 GMT; Max-Age=86400; path=/; secure; SameSite=none
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yIj%2BOFnRDMGVT7C%2BDqXi87PoP5uznshy%2Buwzn9G%2F622msxwv6fIyYnw8F3F0sUzp6pVUwIIM9vLOME%2BF8HKDb9pGr%2F6qPuoag1%2FcaWlS98HHkKLt0y7vgp51LZklmkwmZLuBrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cfb1612fb1eb4f7-OSL
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash b3e7c5a7429e86e6fd320bef2129e18b
73bd0bdd161103cf00b329da4658a18c5ebceeba
e399242dc021c70b84dfd47ee5bcd13998911cc632a631ea9c0b55c7ae599b79
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E399242DC021C70B84DFD47EE5BCD13998911CC632A631EA9C0B55C7AE599B79"
Last-Modified: Tue, 08 Oct 2024 04:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17944
Expires: Wed, 09 Oct 2024 07:53:33 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
GET r.secprf.com/v1/redirect?url=https%3A%2F%2Fwww.lineahjemme.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fs.optnx.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4suosqc
302 Found 0 B URL User Request GET HTTP/2 r.secprf.com/v1/redirect?url=https%3A%2F%2Fwww.lineahjemme.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fs.optnx.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4suosqc
IP
Certificate IssuerLet's Encrypt
Subjectlinksprf.com
FingerprintD0:8A:82:F9:CA:A6:12:31:07:9B:6A:A5:9A:A0:90:98:C1:6E:5E:4C
ValidityThu, 19 Sep 2024 07:42:54 GMT - Wed, 18 Dec 2024 07:42:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?url=https%3A%2F%2Fwww.lineahjemme.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fs.optnx.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4suosqc HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 09 Oct 2024 02:54:29 GMT
content-length: 0
set-cookie: ykuid=13f6c67f38094ae186cabc8c7408cff4; Path=/; Secure; Domain=.secprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=1F2FEBFE0A57B44B637076DAA38F7F7A; Path=/; HttpOnly
location: /v2/go?t=ot.pm%3Ae%2Fhcetia.ewrFc%25e2.Ae%25%2Fpct3%3D9%264am102aa237f6f%26a%3D20400060c2e4c105076100e453dv8r44e4f08%3Da%269%3D1%2603u1h%3Dt%3Fst3n%25rFk2awtwdlrn.atj%2Fmsetnh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=c91df50e9cf74e35a2e6961279383082&sct=0&ct=1728442469232&cu=10c0e6c06e054d28a4feff38aa2911a0&cs=83af702d0911e08861ab74547222f774
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
GET r.secprf.com/v2/go?t=ot.pm%3Ae%2Fhcetia.ewrFc%25e2.Ae%25%2Fpct3%3D9%264am102aa237f6f%26a%3D20400060c2e4c105076100e453dv8r44e4f08%3Da%269%3D1%2603u1h%3Dt%3Fst3n%25rFk2awtwdlrn.atj%2Fmsetnh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=c91df50e9cf74e35a2e6961279383082&sct=0&ct=1728442469232&cu=10c0e6c06e054d28a4feff38aa2911a0&cs=83af702d0911e08861ab74547222f774
200 OK 1.5 kB URL User Request GET HTTP/2 r.secprf.com/v2/go?t=ot.pm%3Ae%2Fhcetia.ewrFc%25e2.Ae%25%2Fpct3%3D9%264am102aa237f6f%26a%3D20400060c2e4c105076100e453dv8r44e4f08%3Da%269%3D1%2603u1h%3Dt%3Fst3n%25rFk2awtwdlrn.atj%2Fmsetnh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=c91df50e9cf74e35a2e6961279383082&sct=0&ct=1728442469232&cu=10c0e6c06e054d28a4feff38aa2911a0&cs=83af702d0911e08861ab74547222f774
IP
Certificate IssuerLet's Encrypt
Subjectlinksprf.com
FingerprintD0:8A:82:F9:CA:A6:12:31:07:9B:6A:A5:9A:A0:90:98:C1:6E:5E:4C
ValidityThu, 19 Sep 2024 07:42:54 GMT - Wed, 18 Dec 2024 07:42:53 GMT
File type HTML document, ASCII text
Hash b2c55c069c2bb891948887ea62575331
d3acd494489fb29fc1b5d1a2a5344f5550723bce
f31fcc80ad05e54b6c1f9ecea127ed18af2762204dc6fab3eb3aaac4c85dff13
GET /v2/go?t=ot.pm%3Ae%2Fhcetia.ewrFc%25e2.Ae%25%2Fpct3%3D9%264am102aa237f6f%26a%3D20400060c2e4c105076100e453dv8r44e4f08%3Da%269%3D1%2603u1h%3Dt%3Fst3n%25rFk2awtwdlrn.atj%2Fmsetnh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=c91df50e9cf74e35a2e6961279383082&sct=0&ct=1728442469232&cu=10c0e6c06e054d28a4feff38aa2911a0&cs=83af702d0911e08861ab74547222f774 HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
DNT: 1
Connection: keep-alive
Cookie: ykuid=13f6c67f38094ae186cabc8c7408cff4; JSESSIONID=1F2FEBFE0A57B44B637076DAA38F7F7A
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:29 GMT
content-type: text/html;charset=UTF-8
content-length: 1469
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9283
Expires: Wed, 09 Oct 2024 05:29:12 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9283
Expires: Wed, 09 Oct 2024 05:29:12 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9283
Expires: Wed, 09 Oct 2024 05:29:12 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9283
Expires: Wed, 09 Oct 2024 05:29:12 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
7.7 kB URL wokoez.com/phtbload?a=1&e=aeyJwaWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTl9
IP
ASN #39572 DataWeb Global Group B.V.
File type gzip compressed data, from Unix
Hash a4778e4301f5c302722e31eb34ac9ecf
3f30e13ef14cbd8bfd521c769507dbcd97938574
0d0782429f6aa7aa03fb7cc1f7674a0d7923e534997ed10e077faea23e95683e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /phtbload?a=1&e=aeyJwaWQiOjEwMTM4OTYsInNpZCI6MTE2MTIyNCwid2lkIjozNzg2OTl9 HTTP/1.1
Host: wokoez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rafkxx.com/
Origin: https://rafkxx.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Wed, 09 Oct 2024 02:54:27 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Platform-Version
content-encoding: gzip
X-Firefox-Spdy: h2
504 B IP
ASN #20940 Akamai International B.V.
Hash 0d4c25fca4e9b16b48378a8ded43686c
e9b7a065b3b41daad5ee1ef847c7db3abbe49b80
2c48dc734f8a6679093fdfb6ab3dca90f2902a0085aeb27c519c2082177c0b33
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "2C48DC734F8A6679093FDFB6AB3DCA90F2902A0085AEB27C519C2082177C0B33"
Last-Modified: Tue, 08 Oct 2024 06:51:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1558
Expires: Wed, 09 Oct 2024 03:20:27 GMT
Date: Wed, 09 Oct 2024 02:54:29 GMT
Connection: keep-alive
GET www.lineahjemme.no/assets/style/less/css/style.css?v=1728366213
200 OK 41 kB URL GET HTTP/2 www.lineahjemme.no/assets/style/less/css/style.css?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type ASCII text, with very long lines (65371)
Hash 3b9e1e394397fb89a235b296808e1213
a5ad58233840a5d2263611c123598649a0d203d9
7e6e5997c6dac24a330e440f4f0b7e1f3d4a9a614b9bcc87c9ac62e5a360a512
GET /assets/style/less/css/style.css?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: text/css
content-length: 40808
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "3f33e-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/style/css/cookieconsent.css?v=1728366213
200 OK 4.4 kB URL GET HTTP/2 www.lineahjemme.no/assets/style/css/cookieconsent.css?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type ASCII text, with very long lines (18803), with no line terminators
Hash 219e4c9c7ebaa386da7945c011426a38
a811ae8f276394941e68892d1535f926bb37cb46
3cf4c6dd5844c0787c8e0a223a089fa2b770bcb4c6e4cee1121aee78e532e0a7
GET /assets/style/css/cookieconsent.css?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: text/css
content-length: 4356
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "4973-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/slideout.min.js?v=1728366213
200 OK 2.4 kB URL GET HTTP/2 www.lineahjemme.no/assets/script/slideout.min.js?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (7314), with no line terminators
Hash 4bb5425e886f09bd7c3acf6757a9aa04
7166ed307b771398a593fc3d4f1c5d93fbbe19bb
b7ecc9fe0f3f29720932349541d9e26ede1d95a0f173dcd7afff6834f796a9d8
GET /assets/script/slideout.min.js?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 2351
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "1c92-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Css/image-map.css?v=1728366121
200 OK 359 B URL GET HTTP/2 www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Css/image-map.css?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
Hash 3a972cfa7d3b5d1039d63c92bfca2af5
bd3e8c8fd881c913522fd79ef2fcefacfb6fe7fe
279243bcd41348e66c8e9acc4160d550d197c089159323310687e90bcc68a97c
GET /_itcm/Core/Widgets/Standard/Image/Assets/Css/image-map.css?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: text/css
content-length: 359
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "30c-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET tc.tradetracker.net/?c=31934&m=0&a=207464&r=v03040001274510c0e6c06e054d28a4feff38aa2911a0&u=https%3A%2F%2Fwww.lineahjemme.no
301 Moved Permanently 46 kB URL User Request GET HTTP/2 tc.tradetracker.net/?c=31934&m=0&a=207464&r=v03040001274510c0e6c06e054d28a4feff38aa2911a0&u=https%3A%2F%2Fwww.lineahjemme.no
IP
Certificate IssuerAmazon
Subject*.tradetracker.net
Fingerprint07:6C:16:0C:F4:81:1E:82:A1:D1:EC:63:1A:CD:7C:97:AF:81:0A:D6
ValiditySun, 18 Aug 2024 00:00:00 GMT - Mon, 15 Sep 2025 23:59:59 GMT
File type PNG image data, 460 x 104, 8-bit/color RGBA, non-interlaced
Hash 5f1a0f1f22664d03e3442f25cc474086
50eb96cec5609130991f026fe43bcf24041d0b4c
fc0d958e21e98aa3eacd45569a3fbc309744b9b20bfcec483d7d4a0a388bc3ec
GET /?c=31934&m=0&a=207464&r=v03040001274510c0e6c06e054d28a4feff38aa2911a0&u=https%3A%2F%2Fwww.lineahjemme.no HTTP/1.1
Host: tc.tradetracker.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.secprf.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 09 Oct 2024 02:54:29 GMT
content-type: text/html; charset=UTF-8
location: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
server: nginx
cache-control: no-cache, must-revalidate
set-cookie: uf=k22hPW8aEit6qHPIiEWPwGhrY3U3WUJGcC9mQTNPZ0cxZmpMSG54TEtsdldJLy9DcWQxOU1Fblgxa09QcFdDYlJ6d3JJK0cxU0tEd0tXeXJ2cmF2anBzY1hOZURROGFYMTVQYVNRPT0%3D; expires=Thu, 09-Oct-2025 02:54:29 GMT; Max-Age=31536000; path=/; domain=.tradetracker.net; secure; SameSite=None
__tdat31934=MTcyODQ0MjQ2OTo6MDo6MjA3NDY0Ojp2MDMwNDAwMDEyNzQ1MTBjMGU2YzA2ZTA1NGQyOGE0ZmVmZjM4YWEyOTExYTA6OmY6OjZmOGZmNjQwMWRmMjdiMTk4ZDZiMmUxMzk2NGU2MDEy; expires=Fri, 08-Nov-2024 03:54:29 GMT; Max-Age=2595600; path=/; domain=.tradetracker.net; secure; SameSite=None
X-Firefox-Spdy: h2
GET yummy.maggieeatstheangel.com/clicktrue_invocation.js?id=15138
200 OK 40 kB URL GET HTTP/2 yummy.maggieeatstheangel.com/clicktrue_invocation.js?id=15138
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.maggieeatstheangel.com
FingerprintFC:FF:54:7F:22:97:A5:6C:90:B0:C5:81:07:D0:1E:32:AB:8F:B6:AB
ValiditySun, 12 Nov 2023 00:00:00 GMT - Wed, 11 Dec 2024 23:59:59 GMT
Hash 0dae3ac0cd98ac1dfb6bdd0043cbe6a9
8669c01a2a4642ca6f0b47931b8ad583a30dc07c
bb33a02b04d0215bfbef8e641c66acf36ae3a46f54b0040ce3ae121094279fc1
GET /clicktrue_invocation.js?id=15138 HTTP/1.1
Host: yummy.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 40378
content-encoding: gzip
server: Caddy
date: Tue, 08 Oct 2024 23:23:16 GMT
cache-control: max-age=43200
expires: Wed, 09 Oct 2024 11:23:09 GMT
etag: "1afa8-hmnAGipGQspvC0eTG4rVg6MNwHw"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SPGnZEm-AoB0O5AQ-n2pJ4pshfjCKUhQ_d0XqQuS0laIowovuYOwXg==
age: 12680
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/fb_logo-li.png
200 OK 25 kB URL GET HTTP/2 www.lineahjemme.no/assets/images/fb_logo-li.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 200 x 188, 8-bit/color RGBA, non-interlaced
Hash f7d9b5c1f90851e80d156cbccecccfa9
acd7a20e2d4c4d41375ee5c4d35259d82bdc054c
89cbdee89f8d93240647ff10e964718e052f6f33a74ca675a0721e9d909b876a
GET /assets/images/fb_logo-li.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 24939
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "616b-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/vhn.png
200 OK 5.6 kB URL GET HTTP/2 www.lineahjemme.no/assets/images/vhn.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 78 x 29, 8-bit/color RGB, non-interlaced
Hash 2639e1a3333ee5f65552fd5cbab1cdad
af07950abf0b7c578aaa9fccd92adc6aad051531
039b03c14e21a40fdf4692c9b80a71768cf8ad22b0b12fc973af2df067235ea9
GET /assets/images/vhn.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 5592
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "15d8-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/se.png
200 OK 767 B URL GET HTTP/2 www.lineahjemme.no/assets/images/se.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash 4e7baf4b55b6d90aa2340d11d0ff11b7
70f49a53e2501ed51035a252d215626a99d1576e
a1808b25100b6899585f3efdb8911a54a40a1bdea9f25ac256bf414f2dd974d4
GET /assets/images/se.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 767
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "2ff-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/no.png
200 OK 810 B URL GET HTTP/2 www.lineahjemme.no/assets/images/no.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash 9b53e8f17cf9e5f70bc8a2c994651eb4
8136e57297d9c6b430706528b372412de8938ab0
5a214a3e3456152b104b83fd1cadf838d4d4e33962ef89d68c499724ffa0d979
GET /assets/images/no.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 810
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "32a-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/dk.png
200 OK 697 B URL GET HTTP/2 www.lineahjemme.no/assets/images/dk.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash 53b56e9793423312f9c6695d2a3f88cb
c7f4af71336ecd6b704b04334abb4b41319a8e6d
e541f2a172a5740c83d1b17b97df18103196f98bae57ddffed557ebc93a086e7
GET /assets/images/dk.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 697
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "2b9-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/fi.png
200 OK 599 B URL GET HTTP/2 www.lineahjemme.no/assets/images/fi.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash 960ae66e43f8f0cc24a55a4b9cabef47
7d731f2634139281a4baeeb29549d2e0c6e1fadb
38c1b5d093b9e66f1cf9dcb10b29f2d5f400992f1ec515caefb1deb1d63ff4fb
GET /assets/images/fi.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 599
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "257-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
471 B IP
Hash b894963bba6d5ebd718630381c39a8bb
16daf68000d5ca111212e7bd66d9871c6c00c6b3
43fba7403c7c22a388bf82797ae22db214f19eee399682a78476bab09a3770af
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET www.lineahjemme.no/_itcm/Resources/Js/_itcm.js?v=1728366121
200 OK 7.7 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/_itcm.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (510)
Hash 7b670e4c0f53b7479276924e98f77cb3
b8be48bf7ad498750959a764a614329d71b5794c
8958c221ca928ad3886d10aa17558d7ced7ec68aed5092d32c989cae6bee3110
GET /_itcm/Resources/Js/_itcm.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 7651
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "b36d-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Resources/Js/jquery.min.js?v=1728366121
200 OK 30 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/jquery.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (32025)
Hash 7a7b18606448bded22cd1cf48d4712cc
5b9df089eb85cecb320fd9ed3f0f9da173c92d61
ab0d063b4ff2827192c0e44103d3091457a1d2374c3b6243721c5679bb61eae2
GET /_itcm/Resources/Js/jquery.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 29531
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "14978-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Resources/Js/bootstrap.min.js?v=1728366121
200 OK 9.8 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/bootstrap.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
GET /_itcm/Resources/Js/bootstrap.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 9765
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "9004-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/cookieconsent.js?v=1728366213
200 OK 6.7 kB URL GET HTTP/2 www.lineahjemme.no/assets/script/cookieconsent.js?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (18606)
Hash 3a7dc6733a0929882a0e4dc1162665b4
862d23d116e87134ee1f80aee1197073154b71e6
af7ef6cec4eea6ee55c83df391cf9558be6d194361cf914d70f2bd5a43fd333d
GET /assets/script/cookieconsent.js?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 6670
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "4937-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Resources/Js/Plugins/typeahead/typeahead.min.js?v=1728366121
200 OK 4.2 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/Plugins/typeahead/typeahead.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (1766)
Hash 35063bd0c82bd822eb9b9d52d2ecdc72
d0af5b81c8a017a77b72bb427963f29971a7c6bd
0909fdfe0cf4d756813ce577f9b901ca2ef83b75ffe7ee7344931e3557f47b9c
GET /_itcm/Resources/Js/Plugins/typeahead/typeahead.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 4163
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "399f-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/cartSlider.js?v=1728366213
200 OK 427 B URL GET HTTP/2 www.lineahjemme.no/assets/script/cartSlider.js?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text
Hash 9e2ff3e7a950ad22f1ee8f0ccef4eb5a
709d3a49fc65874a5739166fb2bf0af9a4181256
4d36b9040604542dc163a57ae6e03b8778de68f67c810ca05724f2209220d4d4
GET /assets/script/cartSlider.js?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 427
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "60d-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/navigation.new.js?v=1728366213
200 OK 2.8 kB URL GET HTTP/2 www.lineahjemme.no/assets/script/navigation.new.js?v=1728366213
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type ASCII text, with CRLF line terminators
Hash 5abb4dd416cbe20ed9118d29f8bc6026
b738862b82b257ed94d31b3a4fdb893082ac1128
626b8d9ab0ca0aa1dcde215ab12c72a86fcefa46da7feddfd096c41dca7b20ca
GET /assets/script/navigation.new.js?v=1728366213 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 2759
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "478d-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Js/image-map.js?v=1728366121
200 OK 1.6 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Js/image-map.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text
Hash 0e38e6ca000b3ee80d21d874a941fe4b
0d1dbc8850eaed50cca946aae50ba5c7f2acd8e7
f06b11c6a76b9c54b8f88b32393a91b9aa8672b677a261a30f726d4aaea6cdc5
GET /_itcm/Core/Widgets/Standard/Image/Assets/Js/image-map.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 1572
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "16b9-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/cookieconsent-init.js
200 OK 1.8 kB URL GET HTTP/2 www.lineahjemme.no/assets/script/cookieconsent-init.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type Unicode text, UTF-8 text, with very long lines (301)
Hash 8a4abea16a28e679ac788cf3bc818c4c
26b066082d00f2c9098847e734c3dfad0676f3f4
35bb01304f873720a0bf77ba06b05aea98ee67ba16a73377c5901484beedc0cd
GET /assets/script/cookieconsent-init.js HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 1824
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "2871-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/script/cookieconsent.js
200 OK 6.7 kB URL GET HTTP/2 www.lineahjemme.no/assets/script/cookieconsent.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (18606)
Hash 3a7dc6733a0929882a0e4dc1162665b4
862d23d116e87134ee1f80aee1197073154b71e6
af7ef6cec4eea6ee55c83df391cf9558be6d194361cf914d70f2bd5a43fd333d
GET /assets/script/cookieconsent.js HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
content-length: 6670
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "4937-623f09e2aeb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.tryggehandel.no/wp-content/plugins/trygg-certification/public/images/logo.png
200 OK 7.0 kB URL GET HTTP/2 www.tryggehandel.no/wp-content/plugins/trygg-certification/public/images/logo.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subjecttryggehandel.no
Fingerprint12:06:AD:9F:40:A8:2C:7B:FE:AB:81:DD:F4:94:DD:4D:D8:08:D7:AC
ValidityMon, 12 Aug 2024 23:54:48 GMT - Sun, 10 Nov 2024 23:54:47 GMT
File type PNG image data, 98 x 98, 8-bit colormap, non-interlaced
Hash 19d2b9f4f435f0319d4518d371f6673c
d514ed7b3d57b6232381659e76f9b9f57d91544e
4bc5535d19907971aea6fb95e5a4cca0a741c3683c636dfb0a12585e8e39c709
GET /wp-content/plugins/trygg-certification/public/images/logo.png HTTP/1.1
Host: www.tryggehandel.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 6964
last-modified: Wed, 05 Apr 2023 12:06:45 GMT
etag: "642d6455-1b34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 10179105
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BcSrIUYPLKarizJMmay%2BLdTLGMk1UB3vte1nWydbVXCAjOmG9s5fyHiLP0Udc%2FAPX1vV0f%2B8rToFtnDXnB4UmvJwRsHr6FUdlGmBICa1hpOXmIn3F20ESOpq6pWEzGWI60hqA9qJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cfb162238e7568e-OSL
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-1787VX024P
200 OK 107 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-1787VX024P
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Size 107 kB (106708 bytes)
Hash 27e0818c08700ac89760ac3a6a2bb28f
a393f42329c5363c471fa02fdaf78e43285ad1cc
746a38dda664241b6736e5d7271b9c2c08ebd5ec75ca5b7d0f9a498de25aa3c9
GET /gtag/js?id=G-1787VX024P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 09 Oct 2024 02:54:30 GMT
expires: Wed, 09 Oct 2024 02:54:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 106708
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/bootstrap-icons@1.5.0/font/bootstrap-icons.css
200 OK 8.8 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap-icons@1.5.0/font/bootstrap-icons.css
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
Hash ea83ae92c684331d2096c4d3306a04de
1865dddcbb7b67dcef4250e590cc9a9574aba673
3c325075337b768950583012228055ae392e384688d77ec5235e6ca88dcec6ef
GET /npm/bootstrap-icons@1.5.0/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: text/css; charset=utf-8
content-length: 8770
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.5.0
x-jsd-version-type: version
etag: W/"100a0-GGXd3Lt7Z9zvQlDlkMyalXSrpnM"
content-encoding: br
x-served-by: cache-fra-etou8220126-FRA, cache-lga21926-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 10168046
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ifOTRRVfQq59hiA4uSr3CZ7k%2FFIU%2BmTHC%2BKBWmrXSdjK8VjqT9Ufgq4dDdL5jmmRSLWd1BZHT5na8eXkN0C%2FwSxfws1Q4MgIZI%2B82%2B2rlQxePfv%2B9KrSHB5%2FoTUy39h5Pws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cfb16230cadb51b-OSL
X-Firefox-Spdy: h2
GET s3.eu-central-1.amazonaws.com/ashild.se/44046db554685f114ea60cac68bc0e4ec9ef56eb502c074e.jpg
200 OK 122 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/44046db554685f114ea60cac68bc0e4ec9ef56eb502c074e.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 122 kB (121709 bytes)
Hash b7db9df66c21c827976fa04b3b26d526
4f85ac39dc63251bbd6356a1853558200fc48e46
519c751d73922347e7eea6b0fb3c15a49b81447e95ac4be4b3b33877be310804
GET /ashild.se/44046db554685f114ea60cac68bc0e4ec9ef56eb502c074e.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: rpafvqAlVkjfp33nlOOETUP1x0erFdXVP1Y/heNKgVhkvjgjaPZSXQiL3lA0L5YlEdy4hbnaPNA=
x-amz-request-id: 922BN9181FPYP2BS
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:30 GMT
ETag: "b7db9df66c21c827976fa04b3b26d526"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 121709
GET s3.eu-central-1.amazonaws.com/ashild.se/99bb712be4101afcee47ed0babc5f3c1c54c76716b396ba7.jpg
200 OK 38 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/99bb712be4101afcee47ed0babc5f3c1c54c76716b396ba7.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1140x227, components 3
Hash e26d4ccf752443b5c0cb3130180c3fae
57bc9845b4aa10c1d80122f23e6e2ec6388c3213
6e0884d8100875101e00d745afe0cbeb2cc19478e15288f16dd67a7b9b8ea0b9
GET /ashild.se/99bb712be4101afcee47ed0babc5f3c1c54c76716b396ba7.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: VgV25VKIY0NggJA7gmLiPGoXqeF/k7YztGrmxiDT33oZvGgXDB2M4FGxTeR3jpE5KolHEJlfsQE=
x-amz-request-id: 922885BZZFMFDRYS
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 05:48:18 GMT
ETag: "e26d4ccf752443b5c0cb3130180c3fae"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 38236
GET s3.eu-central-1.amazonaws.com/ashild.se/099ec6e713752adb43e606aaa8f0fd5c4ee8e4eb2d16b010.jpg
200 OK 157 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/099ec6e713752adb43e606aaa8f0fd5c4ee8e4eb2d16b010.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 555x648, components 3
Size 157 kB (156554 bytes)
Hash 1812f6359d1901dbfd694ea568810ca6
1a9ce4f726697f24c0f05d9cbfb2cef68b0d2052
68374bf64ba704cb824d8f6319c5865aa07b3f0f1e5c357bfafaa8134244e591
GET /ashild.se/099ec6e713752adb43e606aaa8f0fd5c4ee8e4eb2d16b010.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: KbFANQBvvOUs5VEAenFBdPLTug8mVfhVb2ICnJr42QYo+EFsz80IL8WhdAwCLzqupl6We/Z64+M=
x-amz-request-id: 9222THA3H2JJMD86
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Thu, 19 Sep 2024 12:44:08 GMT
ETag: "1812f6359d1901dbfd694ea568810ca6"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 156554
GET s3.eu-central-1.amazonaws.com/ashild.se/d3d1454a264fe719b3b0612e104107ee1f609333bec52eb1.jpg
200 OK 100 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/d3d1454a264fe719b3b0612e104107ee1f609333bec52eb1.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Hash 01f7568ccdcb3701012cf3ed8727e3ee
4831881b8cdc22a8c98db54930d3fca7ba5ae88c
330a776b3eb0b8f1a6a7e77e7327fc55fe830073794c8d2938045e53d33fb0cd
GET /ashild.se/d3d1454a264fe719b3b0612e104107ee1f609333bec52eb1.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: +8rEpBlncFkSBIDbAlvUfRTxBGuBXUHpXjobdigIMnf59UlqtUBjRX2yEZbfYdjuwBoKS1JspRM=
x-amz-request-id: 922EK5X5SEF2HP4G
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:31 GMT
ETag: "01f7568ccdcb3701012cf3ed8727e3ee"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 99641
471 B IP
Hash b894963bba6d5ebd718630381c39a8bb
16daf68000d5ca111212e7bd66d9871c6c00c6b3
43fba7403c7c22a388bf82797ae22db214f19eee399682a78476bab09a3770af
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET s3.eu-central-1.amazonaws.com/ashild.se/00800476ff005f4856416b411a8a32efbfeab5cf20d6b574.jpg
200 OK 243 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/00800476ff005f4856416b411a8a32efbfeab5cf20d6b574.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 555x648, components 3
Size 243 kB (243441 bytes)
Hash cb8ed3f1da913c5debe2acc2c1a004b9
48651705c83ffbb89b99a8d38eed73730fc84a7b
44569e6feeed15afd7ef76f6a5cea5e2b6f9b444609bbeb009fbbddf59ff29a5
GET /ashild.se/00800476ff005f4856416b411a8a32efbfeab5cf20d6b574.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 3mZpAqfMRHrMWRMzo9Z4gSdLlvLeeRvewKhysr6Ha2QHIDkzZQ1WbyUcL1d5BJs7KiUQUaqybzU=
x-amz-request-id: 922AMPYPSH9H3S66
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Thu, 19 Sep 2024 12:44:49 GMT
ETag: "cb8ed3f1da913c5debe2acc2c1a004b9"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 243441
GET s3.eu-central-1.amazonaws.com/ashild.se/72f911e2143a112572b0cf9018cf7d705c5ea6cef7553ef7.jpg
200 OK 113 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/72f911e2143a112572b0cf9018cf7d705c5ea6cef7553ef7.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 113 kB (112713 bytes)
Hash bc907e7a64a74aadd9512b209658454e
143435edc5846d44ab2434b863faf94ba12c15f7
8bdd3fc5b95069c59635bae8f0998e9e16170dbb3434bcf0f1fa85f93d60b69e
GET /ashild.se/72f911e2143a112572b0cf9018cf7d705c5ea6cef7553ef7.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: gHzMYJO4+iimdRyADVArgFu87Hku87sqzuMyBQB1CUZX9ZO4CaimuCSVRrxAjxT7xH2Vx2FlXxA=
x-amz-request-id: D7CJ50WNC8FQX2DD
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:32 GMT
ETag: "bc907e7a64a74aadd9512b209658454e"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 112713
GET s3.eu-central-1.amazonaws.com/ashild.se/db1ee45a77502e8bba3bd1c10c5940d48f67f755b75622d5.jpg
200 OK 112 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/db1ee45a77502e8bba3bd1c10c5940d48f67f755b75622d5.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 112 kB (112018 bytes)
Hash 8f5c4ee17e1a3987c8c0cf961382d1e8
45f97b7b496e77622d893f7c1cd98af42c6b7cd5
ad70e4496e84eded03946dab2e3ed4fe115e4d872dae498da3eda80c7f55aa13
GET /ashild.se/db1ee45a77502e8bba3bd1c10c5940d48f67f755b75622d5.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: HrwhZWe12Jfonz7YZLDcH9cFbOf1WEE6Qeby6wXQAsGNqDALE3NEYI9KFB+yWkqrv91xMHYymzE=
x-amz-request-id: 922BGVNYKKAHXC8Q
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:31 GMT
ETag: "8f5c4ee17e1a3987c8c0cf961382d1e8"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 112018
GET s3.eu-central-1.amazonaws.com/ashild.se/83c5330b247c2fc2c065122436b6cc63f2600fcf932795a1.jpg
200 OK 1.2 MB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/83c5330b247c2fc2c065122436b6cc63f2600fcf932795a1.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1140x1335, components 3
Size 1.2 MB (1229603 bytes)
Hash f7af78a6300a0f34b8ae9c793469f7e9
b79d3998a1c1b2a82d699c7b45e022f82bf2151d
dc736d4569e852d194759fa6cbb2f975103d6122b7c001039b057078fd527bf6
GET /ashild.se/83c5330b247c2fc2c065122436b6cc63f2600fcf932795a1.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 6tRiUojlRKuSFipG3uMxZw9x0ANExR+PHX/5p9eqG7pzB48Tvm11jwrkudBbUON9O8bIOuc9zQg=
x-amz-request-id: 9222Q8GNJ7Q29BJB
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 05:46:15 GMT
ETag: "f7af78a6300a0f34b8ae9c793469f7e9"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1229603
GET s3.eu-central-1.amazonaws.com/ashild.se/0804ceba5b835225014cd407b4be6d721f8c17b492738fa3.jpg
200 OK 110 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/0804ceba5b835225014cd407b4be6d721f8c17b492738fa3.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 110 kB (110449 bytes)
Hash f0c46ab62ca7b7dcc72036d337250bd6
7cbb7901414aeade09fb4cf001ba96b361ef35b6
f675596888988acbc62fc65e1ca6b79ec47a530a553c54d1ac7c80ce76137bee
GET /ashild.se/0804ceba5b835225014cd407b4be6d721f8c17b492738fa3.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: W2FNv/dGNTGJOL4cd/MR0hcNTa0B09sm/WGapteex12cRnY+C31pwCcPQkf3jEE+hvCah6WDJCA=
x-amz-request-id: D7CQ7E65AC17BF01
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:32 GMT
ETag: "f0c46ab62ca7b7dcc72036d337250bd6"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 110449
GET s3.eu-central-1.amazonaws.com/ashild.se/c436ad9e31325431171a8201e9609c628e7b3aed7572c473.jpg
200 OK 139 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/c436ad9e31325431171a8201e9609c628e7b3aed7572c473.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 139 kB (139229 bytes)
Hash 81fd21ece211c612ff684f28516c2891
e25d023106d18c495842e3e020839668c77e7118
141b793614d286517d69b3e83d26d1e34115e28ab297a02805a8d2140eb0c8b2
GET /ashild.se/c436ad9e31325431171a8201e9609c628e7b3aed7572c473.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: asL3ulcpHHJ1J1gbtCGMUVfqHfbgZeqpaFMFgVE0Cdc5Tfrd7viPqTrHTMHe0c7SI+GTiQDOw7s=
x-amz-request-id: D7CJYRF4NSNWTD0D
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:33 GMT
ETag: "81fd21ece211c612ff684f28516c2891"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 139229
GET s3.eu-central-1.amazonaws.com/ashild.se/f12160d171816b5223e36a2ac620184ed9c9df066281254b.jpg
200 OK 1.5 MB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/f12160d171816b5223e36a2ac620184ed9c9df066281254b.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1140x1331, components 3
Size 1.5 MB (1487853 bytes)
Hash 843fb456d95e3ba52ca302815fad5701
c7cbeea37ff0f3a7e296d252a7a2052ac828feac
97453c54792c5d443919086a11c193b6a67b8248f717d627e97d2a07d59f3f34
GET /ashild.se/f12160d171816b5223e36a2ac620184ed9c9df066281254b.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: SWMuXDpCAvJSKsRDHnjONMriK+zw+Uz8bJvWAPWhZCQl0ppcNN2IDD/py77BzueTXh6ODEUzHUE=
x-amz-request-id: D7CJCM58C9NENJAS
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 06:50:40 GMT
ETag: "843fb456d95e3ba52ca302815fad5701"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1487853
GET s3.eu-central-1.amazonaws.com/ashild.se/9e777475bbf146461da5570f7cb450b69f50fa9b5967d2f3.jpg
200 OK 107 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/9e777475bbf146461da5570f7cb450b69f50fa9b5967d2f3.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Size 107 kB (106745 bytes)
Hash d2f00106c268929bf4765755358bc91f
23b81382d1edec26ae71c19f3dd397bd6cdaaf76
84ada7106982755c30f648bf41bd5c686ba97e5a23e3e457272e4369a6731ec8
GET /ashild.se/9e777475bbf146461da5570f7cb450b69f50fa9b5967d2f3.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: hc3l9SVhWJxwgEQRFCmoCyOjg0GwtS9suzAGG2xRgZx9k7SyEh2OTmAD6+rzKcrCCJ4sa7wzcHU=
x-amz-request-id: D7CZGHMC0QZ3EEQ2
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:34 GMT
ETag: "d2f00106c268929bf4765755358bc91f"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 106745
GET s3.eu-central-1.amazonaws.com/ashild.se/78d5fa2a02a69cefd994471301d275abfeca6ce2dcdd74c5.jpg
200 OK 88 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/78d5fa2a02a69cefd994471301d275abfeca6ce2dcdd74c5.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x350, components 3
Hash 7a2506748cfb2ef6626e1b754e129230
9118cd1cb1e559824ab4b361212ae8bef2a27e21
21ca987aaad55617ab3f34a86f69d4a8a9cedfb6a0d595d0237a13d03940df70
GET /ashild.se/78d5fa2a02a69cefd994471301d275abfeca6ce2dcdd74c5.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: PCsN7ISI66HUtR0CYH+QHRPh0aEoUmL9xV9Oz0GHKVsFBBagdBI551f9RX2S2EV3u1Rss438I1w=
x-amz-request-id: D7CNRXNFNPK5RFGX
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:34 GMT
ETag: "7a2506748cfb2ef6626e1b754e129230"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 87960
GET s3.eu-central-1.amazonaws.com/ashild.se/2442af44bf00ff2a780ec198ac5292e20674dd757f2aabc1.jpg
200 OK 2.8 MB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/2442af44bf00ff2a780ec198ac5292e20674dd757f2aabc1.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2560x1200, components 3
Size 2.8 MB (2773603 bytes)
Hash 9e9d5d087505a278664e97da5168e294
b27691b3c509a3f0d6940d73480374bea9322f6f
71ed72f6ca73fee495e670afcb0b213b96c2952449bf52c4bc908636d71f2a32
GET /ashild.se/2442af44bf00ff2a780ec198ac5292e20674dd757f2aabc1.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: Dcy56Pb3KHBvw3iafI3lwyewR/IAasuyE6eIialWYQtmk4F+2geQQxRxEzg1eSvB4wCcVaHuHuY=
x-amz-request-id: 922B1Q17WGJP9D7D
Date: Wed, 09 Oct 2024 02:54:31 GMT
Last-Modified: Tue, 10 Sep 2024 05:45:47 GMT
ETag: "9e9d5d087505a278664e97da5168e294"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2773603
GET s3.eu-central-1.amazonaws.com/ashild.se/ed65a267cf9682527d3b526e18a1a0b645fb0ca2a4c4087a.jpg
200 OK 276 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/ed65a267cf9682527d3b526e18a1a0b645fb0ca2a4c4087a.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 555x648, components 3
Size 276 kB (276137 bytes)
Hash 0eaa8d76a16431f458424ee931534aad
ef46ec7324b079fe6136c817f21fef9de1f08834
1c7584534ca826c57064400b1bd0c70a85df7ce2957874e69c873b253caf592f
GET /ashild.se/ed65a267cf9682527d3b526e18a1a0b645fb0ca2a4c4087a.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: NcTSKErCmRKwit5xTTR6LKhqIlejzK3cEGZVcGILUxpphZEG08RtK+H+XFKtiXdI9pDabOek2LI=
x-amz-request-id: D7CQ8334W8SQJ09T
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Thu, 07 Sep 2023 14:49:59 GMT
ETag: "0eaa8d76a16431f458424ee931534aad"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 276137
GET s3.eu-central-1.amazonaws.com/ashild.se/57c9485d0cc51896f69cd48b8cfc615d5379192f57e8e050.png
200 OK 6.4 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/57c9485d0cc51896f69cd48b8cfc615d5379192f57e8e050.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 4f6052f74a1c1b39ffedef5d4941ed61
1a8b286eb98330f62050e30774f51c68fb75aef6
8f01faeb8eeee9cb0439ad5b13dd936f94028bb56d9e0d807a0059a70df3753a
GET /ashild.se/57c9485d0cc51896f69cd48b8cfc615d5379192f57e8e050.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: G9L2LJ9Ufaccv0ZmkI8Nb3yfY5MfwR+k9XEQRtBu2VStaroLNlZ/XLWQDU0QPHpuvuv8AwczT50=
x-amz-request-id: D7CJ86Y7GBE0WD7E
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 09 Nov 2021 15:12:16 GMT
ETag: "4f6052f74a1c1b39ffedef5d4941ed61"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6431
GET s3.eu-central-1.amazonaws.com/ashild.se/be7211b4ff4002ac051d959c91c5582b697723ef6bf05a0e.jpg
200 OK 309 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/be7211b4ff4002ac051d959c91c5582b697723ef6bf05a0e.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 555x648, components 3
Size 309 kB (308625 bytes)
Hash 6b6566bb6dc02bb2defa5e95efe4acbf
ca10288d689ee94ee571aeaa71682a84da5aa652
0ce5fdd04473edf6c08e6dd5b963cf59d2d5d35ce4041b8d6574fe275b44c2fe
GET /ashild.se/be7211b4ff4002ac051d959c91c5582b697723ef6bf05a0e.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: IEzAWUupYYIycy1Ui1pSIxJPIgkphir2OjHP66iFrhH3QPDK1CxQZrHBhM7sxyBdQzSJlFk04Vo=
x-amz-request-id: D7CVE40932X1TJ6H
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 07:05:30 GMT
ETag: "6b6566bb6dc02bb2defa5e95efe4acbf"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 308625
GET www.googletagmanager.com/gtm.js?id=GTM-WSH38SM
200 OK 98 kB URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-WSH38SM
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT
File type JavaScript source, ASCII text, with very long lines (11382)
Hash 92b8945c674fbd05cb5d3453f3f6a7d9
730d79f927978752c1c7e252fafa8cd4a638f72d
f2c506f2432cc715b7812b8d8ee2f95fbe42eddccc84c7c6ebc99399b085f753
GET /gtm.js?id=GTM-WSH38SM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 09 Oct 2024 02:54:31 GMT
expires: Wed, 09 Oct 2024 02:54:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 09 Oct 2024 00:32:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1080:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1080:0"}],}
server: Google Tag Manager
content-length: 97738
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.lineahjemme.no/assets/style/less/font-awesome-4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
200 OK 67 kB URL GET HTTP/2 www.lineahjemme.no/assets/style/less/font-awesome-4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /assets/style/less/font-awesome-4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/assets/style/less/css/style.css?v=1728366213
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:31 GMT
content-type: font/woff2
content-length: 66624
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "10440-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
POST www.lineahjemme.no/Api/Widget/GetStaticById?id=29
200 OK 805 B URL POST HTTP/2 www.lineahjemme.no/Api/Widget/GetStaticById?id=29
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
Hash 510e989bad5beab97cc9ece0dcc2bbff
8d9d191f5d3625b9d22c0413e67ce43b89e18106
a80bfd0cdf299400061d59e60e4133eed8518806fc119bf8b8758206e8459757
POST /Api/Widget/GetStaticById?id=29 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 16
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:31 GMT
content-type: application/json
content-length: 805
x-powered-by: PHP/7.4.19
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET s3.eu-central-1.amazonaws.com/ashild.se/5415b5074f76740cb346307a7d4cb04c8ef6f15008991815.png
200 OK 2.4 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/5415b5074f76740cb346307a7d4cb04c8ef6f15008991815.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit grayscale, non-interlaced
Hash 50d7a33ae33b25cac3af1b7d473d0ce3
910e98978586e56b81e2193f174c7994556793d5
3606dc7983018f1b3f499a870181567e7da92a2783bebf41915cf9d5eb366bd2
GET /ashild.se/5415b5074f76740cb346307a7d4cb04c8ef6f15008991815.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: c9MkggWqgABlTdsfUxb48tWAAaBrli8bM5RBypx2kxF5lCZaN1yrUTIkIrjaWcTcN2vNh3dJMSA=
x-amz-request-id: BJ1SK04K6XJGT7EE
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Tue, 09 Nov 2021 15:12:55 GMT
ETag: "50d7a33ae33b25cac3af1b7d473d0ce3"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2430
GET s3.eu-central-1.amazonaws.com/ashild.se/47433390ee276d4629bfd3ec33bfa14f9b8463f2259c10be.png
200 OK 12 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/47433390ee276d4629bfd3ec33bfa14f9b8463f2259c10be.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 8d959e638ad168d3c65f710cdb47f4f9
3390752d835ece863f0f2f7a39395770a60a6f70
40f1bae580751c9b08e6fb595e631b4ed69575cde05bbe439a0af26a3d812770
GET /ashild.se/47433390ee276d4629bfd3ec33bfa14f9b8463f2259c10be.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: IdC+5QETAPjgdaoMs9AOi/yCQWAWpWBMGw+Biy2snhCyUwPIGnb4KAnZt2rzwVz7AzIgSsVvWPM=
x-amz-request-id: BJ1XW1WK6YTXBRR1
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 06 Apr 2022 08:20:13 GMT
ETag: "8d959e638ad168d3c65f710cdb47f4f9"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11623
GET s3.eu-central-1.amazonaws.com/ashild.se/eeaba60a3725b26f8977c9d7db53f924c1b14818324fc872.png
200 OK 8.0 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/eeaba60a3725b26f8977c9d7db53f924c1b14818324fc872.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 53c1cf62026b4e01eb77fb43d624c96f
e0790644449277b90da04294a7a364554354b4e7
32a1e36862309a28a5551433af235abffb86d9530ba531b72c36afc0883ff544
GET /ashild.se/eeaba60a3725b26f8977c9d7db53f924c1b14818324fc872.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: qZ5forSD9ImrnWuAfHwOVbbYoI5l66zmZG5SjGPnOWMgQUdOdjr5xEhJ+VA5K9x/LebL8Zw62ag=
x-amz-request-id: BJ1X3EJEW6P2B6BG
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Tue, 09 Nov 2021 15:13:30 GMT
ETag: "53c1cf62026b4e01eb77fb43d624c96f"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7973
GET s3.eu-central-1.amazonaws.com/ashild.se/a8f35235ad1c370e9c7b94a2c00a00d4bb33b07773c86274.png
200 OK 3.2 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/a8f35235ad1c370e9c7b94a2c00a00d4bb33b07773c86274.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit grayscale, non-interlaced
Hash 4f0137f829f6e649789f3aa74563d09b
021238a3ac0a02d2d6802838a27eabe065be3d0f
f1bf23b3ad0f678942d5886c472c2b599b923754a188d62236a97394dcfc51cb
GET /ashild.se/a8f35235ad1c370e9c7b94a2c00a00d4bb33b07773c86274.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: XhQsTc15qQqzWRdD73iyg+ezuT0koKYS+3k/TCtdzCak4TB92QK9SUY95s6xpsAnEYGPaaDwhwQ=
x-amz-request-id: D7CZBDB9QCD59ZST
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 09 Nov 2021 15:12:43 GMT
ETag: "4f0137f829f6e649789f3aa74563d09b"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3155
POST www.lineahjemme.no/Api/Widget/GetStaticById?id=29
200 OK 764 B URL POST HTTP/2 www.lineahjemme.no/Api/Widget/GetStaticById?id=29
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
Hash a4c517360746f4d3d4b960a4b272d86a
020ae7f7da9834c76111528409d54defa4449f0d
bfe1c1dd060be04fd10f03bdc2e70da4598124a1bb981f36b396fc299b93c290
POST /Api/Widget/GetStaticById?id=29 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:31 GMT
content-type: application/json
content-length: 764
x-powered-by: PHP/7.4.19
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET s3.eu-central-1.amazonaws.com/ashild.se/78569edc8664f0b21f2d3ae1d9c89a3c230cc0d49e417252.jpg
200 OK 3.5 MB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/78569edc8664f0b21f2d3ae1d9c89a3c230cc0d49e417252.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2560x1200, components 3
Size 3.5 MB (3483915 bytes)
Hash 4ece2457c9268ff9551da33342a6e738
06ad90f7a00a1798976facb4f9b0b895e083193d
a35295c09abec253347d71475bfe8adcec2e660fb296f6448121474ce45941b3
GET /ashild.se/78569edc8664f0b21f2d3ae1d9c89a3c230cc0d49e417252.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: yMKTSsIunIFVrbc1Zh1MGwAo5pahvutHUkX9aXcxFhGDCx16Vt9zW4N4Ywty8yrtkV8tbFM0AO0=
x-amz-request-id: D7CH080E9682K2CF
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Tue, 10 Sep 2024 06:50:11 GMT
ETag: "4ece2457c9268ff9551da33342a6e738"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3483915
POST www.lineahjemme.no/Api/Widget/GetStaticById?id=95
200 OK 771 B URL POST HTTP/2 www.lineahjemme.no/Api/Widget/GetStaticById?id=95
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
Hash 6d5a730b1c3bfdf55ef0bb9cebb93f9e
30f4a0fabe7a777542dfcc839a433a8aa39bb516
c650271d82948bfd44040f5017c394e456bba2c641759202007ba1cb5beacdf7
POST /Api/Widget/GetStaticById?id=95 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 16
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:32 GMT
content-type: application/json
content-length: 771
x-powered-by: PHP/7.4.19
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET s3.eu-central-1.amazonaws.com/ashild.se/a3c2462fb662cbcde0b7081eae6593439ef5e72c9ea974f3.png
200 OK 6.7 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/a3c2462fb662cbcde0b7081eae6593439ef5e72c9ea974f3.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 48cd2e18175e456e54d2cb439b2ed98c
7951cff4ccc763947ca6f8fddddb5e5a08413abb
95dec5a3dcb380438a3e650ec1da9ce25c8e02a010adfcccbd0dd8a734274acb
GET /ashild.se/a3c2462fb662cbcde0b7081eae6593439ef5e72c9ea974f3.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: AYjFInsxNoVc7yU5WzWVo3APZ2XoKKIAHJHloop6SUqGw60Sycd7W3Ir7HOmdJ7dcUkdANU0a4c=
x-amz-request-id: BJ1MVEJQ31BAQ2FK
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 06 Apr 2022 08:14:58 GMT
ETag: "48cd2e18175e456e54d2cb439b2ed98c"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6711
GET s3.eu-central-1.amazonaws.com/ashild.se/311e08caa250d049bd5413cdb7a2aa42c20a9280481b9c01.png
200 OK 7.6 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/311e08caa250d049bd5413cdb7a2aa42c20a9280481b9c01.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 1af27483341eca8aab6ec8580e808302
b1c3f67019084c0d49d0fcaec102955893a1d175
5c52fce59a6840b5d630b7775e94c75af83ed5ceacd10110cd18d70117f598c9
GET /ashild.se/311e08caa250d049bd5413cdb7a2aa42c20a9280481b9c01.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: TSqKnftKJ73/+DEKW/HcxOSVIt8JfkkC7hA3G1yS3FM+/OiFIIWVVK2WwfKDaL6Qqp+4CdF7S3E=
x-amz-request-id: BJ1QY56ATQEX3HWA
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Tue, 09 Nov 2021 15:14:26 GMT
ETag: "1af27483341eca8aab6ec8580e808302"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7629
GET s3.eu-central-1.amazonaws.com/ashild.se/7da9579b0eea497dcb9d02c06e25386568df5eadcd74a6d0.png
200 OK 10 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/7da9579b0eea497dcb9d02c06e25386568df5eadcd74a6d0.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash 7de1965675d79b71426c5e4ba1ee2f0a
00869803d8045a0f44c3063c4b95c31d4dbe9020
4ef90fe066bc83ee9e43e68c9d005d6473a3c85141b49c4bd37c708853ae66df
GET /ashild.se/7da9579b0eea497dcb9d02c06e25386568df5eadcd74a6d0.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: yVyGCJDB5aY4YqEjnTedvDxinwakJIAWQ/CtOSkbdk40kMVGFQWPQFKGdprcMh32Ci/IdY2FJA0=
x-amz-request-id: BJ1G0P2BPTEGRD89
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Tue, 09 Nov 2021 15:14:26 GMT
ETag: "7de1965675d79b71426c5e4ba1ee2f0a"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 10362
GET s3.eu-central-1.amazonaws.com/ashild.se/d72a18dba99f8f3fa92091fd78aff67604a1d44cc8e9c4a3.png
200 OK 2.6 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/d72a18dba99f8f3fa92091fd78aff67604a1d44cc8e9c4a3.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit grayscale, non-interlaced
Hash 3b1f7c6d7999ea600e0eb56d4e3f7025
32554be20af1c2278a992bce5a12c920c5c51c4c
039c2085882ee573689ead2ade76b6aaddd6f2571f0bf999598cda45644119d7
GET /ashild.se/d72a18dba99f8f3fa92091fd78aff67604a1d44cc8e9c4a3.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: fBlUMTLxmBtyYCyLNIHpdxNB597MYfX97LY5HagPuCe8lAlmC1dlDkkAMNiM/OwZDzVsk2VQ3Vg=
x-amz-request-id: BJ1Q1HBD33Q2RMCY
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 06 Apr 2022 08:04:45 GMT
ETag: "3b1f7c6d7999ea600e0eb56d4e3f7025"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2588
GET s3.eu-central-1.amazonaws.com/ashild.se/d7137fc35b626e3ad6cf606daabe4eedacb0a69498b76a65.jpg
200 OK 1.7 MB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/d7137fc35b626e3ad6cf606daabe4eedacb0a69498b76a65.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2560x1200, components 3
Size 1.7 MB (1652289 bytes)
Hash 675f70ccb23858fe53352db14d9462c8
9c047282d8d58b38f56df5c3bd6b69d2392448bc
1db5489b35582c744ed1ead62792a688e2763756789b453b0117ecf076cb7519
GET /ashild.se/d7137fc35b626e3ad6cf606daabe4eedacb0a69498b76a65.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: yItPAhR3E2qb10aVaRahV1edFjtRdvh5fM4SPLQLCKi7CfEmzLXsiZ8yO5y/wXU3VQDg4JqCMH8=
x-amz-request-id: D7CKD02FHMMXB6PA
Date: Wed, 09 Oct 2024 02:54:32 GMT
Last-Modified: Thu, 07 Sep 2023 14:47:50 GMT
ETag: "675f70ccb23858fe53352db14d9462c8"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1652289
GET s3.eu-central-1.amazonaws.com/ashild.se/37ef3a730926c810e940856b6622d4b5a805faceed6b70ad.png
200 OK 12 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/37ef3a730926c810e940856b6622d4b5a805faceed6b70ad.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Hash ca48435148fe7cf1dadf93acc53c3bb5
ac6e15ea7d7bf6f221663b3f8f888b96e5485390
6f88a5bd46008017090d11026f7a4082e98a8c96b6ba74b6dc9eaa4fafac2ffb
GET /ashild.se/37ef3a730926c810e940856b6622d4b5a805faceed6b70ad.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: C+VtpgK2Y+oMaYvgky1P1jUh70FDmREvk9d8y6P1QGUBM8nYm94eN/VOD0rDM1rxNBmFhmgElxw=
x-amz-request-id: BJ1QV7J189YDVSG5
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Fri, 26 Aug 2022 09:31:35 GMT
ETag: "ca48435148fe7cf1dadf93acc53c3bb5"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 12021
GET s3.eu-central-1.amazonaws.com/ashild.se/1af42053cae6994b80c931b9832d4d4313512a3098545670.png
200 OK 3.5 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/1af42053cae6994b80c931b9832d4d4313512a3098545670.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type PNG image data, 165 x 165, 8-bit colormap, non-interlaced
Hash 90c7e767197e77a40fa7961c72f620c9
68671038ec0c3d38e0d529232aa91e0c9fd409e5
08a7b730ef79c5cd8c853c00e7c9477d9a80f92a13ff9d7cc7711d300ec726b5
GET /ashild.se/1af42053cae6994b80c931b9832d4d4313512a3098545670.png HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 6b/Mi+1J8iWqd3+5fjgeaz6KJlDO0bsxOYxV3omJAExexItFeUyBKbGGXuwEcUWciPEHSeRP4b0=
x-amz-request-id: BJ1HCP9WV23HDSB1
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 06 Apr 2022 08:19:36 GMT
ETag: "90c7e767197e77a40fa7961c72f620c9"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3542
GET s3.eu-central-1.amazonaws.com/ashild.se/2e5a7e8e23af9ddf19b82b59f3bb3d8f186d6c448645f9ec.jpg
200 OK 11 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/2e5a7e8e23af9ddf19b82b59f3bb3d8f186d6c448645f9ec.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2016:12:13 07:44:23], progressive, precision 8, 59x32, components 3
Hash 80b19aeca437599a16cec93af3c31518
8ca24aaeed44660d334057716ac2bc04a4e6dede
63101445757b9b1dec84b0121d36c86a7df7bd5608adbd70c365377ee0513d0a
GET /ashild.se/2e5a7e8e23af9ddf19b82b59f3bb3d8f186d6c448645f9ec.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 2kmam/VSHZXhHbxNiV9BOpPAxcTEkMnhpoZ0PDyf+aKzQbaUzglfj4LKf/8YLF7mdihpy/6rdPM=
x-amz-request-id: BJ1NDPS87GC5X2GC
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 24 Jun 2020 11:42:12 GMT
ETag: "80b19aeca437599a16cec93af3c31518"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 11034
GET s3.eu-central-1.amazonaws.com/ashild.se/c32b94ec2b8c202a65e9313a761d16b8c3c8182c81318f17.jpg
200 OK 82 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/c32b94ec2b8c202a65e9313a761d16b8c3c8182c81318f17.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1705x503, components 3
Hash 5c43e66ca3b1c990fafb07ecfd7a8535
e5c7ec9c91d825c469e6cd6dd0b6c903e45e8aaa
8b382bb2c575058c0d4f348ab5f2112f0bb09339b6bc2c3888761cd76f139bb7
GET /ashild.se/c32b94ec2b8c202a65e9313a761d16b8c3c8182c81318f17.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: dgESgebkAP2l5kage5TgqpkgShj65HxO1p4wzQ/iTbKBQUJu5s98mI2HwKcpqz4r/22Ca1ARP3I=
x-amz-request-id: BJ1MPS85P6AWVD6V
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Thu, 07 Apr 2022 06:51:14 GMT
ETag: "5c43e66ca3b1c990fafb07ecfd7a8535"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 82331
GET s3.eu-central-1.amazonaws.com/ashild.se/54cd1633d47b0ccbf11112d812ee7da5dd4a7bd854cd9c64.jpg
200 OK 8.2 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/54cd1633d47b0ccbf11112d812ee7da5dd4a7bd854cd9c64.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 165x165, components 3
Hash 57cb35b5c650acc91071c823a0631457
6277f30c0bc4643bc447ec8220dd4d01c24ead5b
b747890e186543e1334602869c18588c425b8dbe2602f9a5fade4ce6cf9a27d3
GET /ashild.se/54cd1633d47b0ccbf11112d812ee7da5dd4a7bd854cd9c64.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: Tb03ayXL6X6epS/Qgd900bUmvSQjzGSk1zpCgZkvdxefnoxq8lZeylgjVEy0FiDtSFZZyV+WIYY=
x-amz-request-id: BJ1K6F0R7DE1QQMX
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 14 Sep 2022 15:49:37 GMT
ETag: "57cb35b5c650acc91071c823a0631457"
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 8165
GET www.lineahjemme.no/_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121
200 OK 1.7 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (4014)
Hash 4950423c548a646372ae58f7bbe67d1f
f54943150a9cc3db37bba49e9abb8f1206b8b12b
ab69f8053e420d7f3c043b55a1bfebd9981ccf92c21b4fd823031ab51967323a
GET /_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: application/javascript
content-length: 1685
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "faf-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET s3.eu-central-1.amazonaws.com/ashild.se/7300c300c8fc21ff1c0a05da52ef230daf7edc134ea45dee.jpg
200 OK 733 kB URL GET HTTP/1.1 s3.eu-central-1.amazonaws.com/ashild.se/7300c300c8fc21ff1c0a05da52ef230daf7edc134ea45dee.jpg
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.s3.eu-central-1.amazonaws.com
Fingerprint6A:58:E4:DC:AF:F3:04:20:D7:8A:9A:AF:8A:52:9A:06:97:A2:FA:7B
ValidityFri, 02 Aug 2024 00:00:00 GMT - Wed, 30 Jul 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1140x1331, components 3
Size 733 kB (732877 bytes)
Hash 0e42e9638d136088aaabfe637a4cf0ff
a0307d001572a224d8c6aafa9ef3e2bf66f757d3
087961e188d249898effa697bc9819289dc98bef411da0ba73c633decb8bc753
GET /ashild.se/7300c300c8fc21ff1c0a05da52ef230daf7edc134ea45dee.jpg HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: G5gJ+2w3sBmUMOLXriJOKRjbtPgUmQUPvvF5cuWlnaBA9TQoQOYszo2NJwNmrNJrUbKpyu2CHik=
x-amz-request-id: FRD93FDGDCAMYFYP
Date: Wed, 09 Oct 2024 02:54:34 GMT
Last-Modified: Thu, 07 Sep 2023 14:48:21 GMT
ETag: "0e42e9638d136088aaabfe637a4cf0ff"
x-amz-server-side-encryption: AES256
Cache-Control: public, max-age=604800
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 732877
GET www.lineahjemme.no/_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121
200 OK 1.7 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text, with very long lines (4014)
Hash 4950423c548a646372ae58f7bbe67d1f
f54943150a9cc3db37bba49e9abb8f1206b8b12b
ab69f8053e420d7f3c043b55a1bfebd9981ccf92c21b4fd823031ab51967323a
GET /_itcm/Resources/Js/Plugins/mailcheck/mailcheck.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: application/javascript
content-length: 1685
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "faf-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121
200 OK 5.7 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text
Hash 2e0b53bd4506aa16dfafd0c63c1886b0
557d564df9de7fce2baa4730d48ff9524a776ec3
43101c98b98bed330025a6ea267764b30c64524123ceebaf3e6a34de52d56914
GET /_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: application/javascript
content-length: 5725
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "837f-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121
200 OK 5.7 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, ASCII text
Hash 2e0b53bd4506aa16dfafd0c63c1886b0
557d564df9de7fce2baa4730d48ff9524a776ec3
43101c98b98bed330025a6ea267764b30c64524123ceebaf3e6a34de52d56914
GET /_itcm/Core/Widgets/Shop/Cart/Assets/Js/Cart.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: application/javascript
content-length: 5725
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "837f-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVc.ttf
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVc.ttf
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409
Hash bcecbe6876aabc8a40cd9429e7cbb5dc
da537e48d7baf490ccfa344998742c1e90532d44
9788f42e28c41922e8bd6bc78ffdcf9747f11edd1ac1a02614c20e9300efa313
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23603
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Oct 2024 16:33:22 GMT
expires: Sat, 04 Oct 2025 16:33:22 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:00:39 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 382871
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409
Hash d0b9ab30fac8c7bccf3b83ebe71d16d8
1ad6d42a4ca0069c3a6ff04f9d566c1ddfa928f9
598911be4586332ffee19ea06d32199c323b6c8f75ebdb6e4b6b3c483c89f722
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23587
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Oct 2024 09:50:19 GMT
expires: Sun, 05 Oct 2025 09:50:19 GMT
cache-control: public, max-age=31536000
age: 320654
last-modified: Thu, 14 Dec 2023 02:00:41 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET cdn1.profitmetrics.io/3B81F662D768CBFE/bundle.js
200 OK 32 kB URL GET HTTP/2 cdn1.profitmetrics.io/3B81F662D768CBFE/bundle.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectprofitmetrics.io
FingerprintAA:56:42:79:A6:0C:9A:3D:59:52:60:2C:5D:B0:1E:44:E6:A1:DE:C2
ValidityThu, 29 Aug 2024 23:30:36 GMT - Wed, 27 Nov 2024 23:30:35 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (21926)
Hash 2573aa99ec632317e8a9ac3cb51521e9
777d5c3427ace810137a9d4e430b6d69fbb4df36
e73a9d99aea1d1892f1eaeb894b399214864b2ab1803b464fadf49798e77bbf9
GET /3B81F662D768CBFE/bundle.js HTTP/1.1
Host: cdn1.profitmetrics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
last-modified: Thu, 16 Nov 2023 15:11:17 GMT
etag: W/"2573aa99ec632317e8a9ac3cb51521e9"
cache-control: max-age=120
cf-cache-status: HIT
age: 2794
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=71L0py4FfuAyjMULdIFvP1JbGX1hqhg7ksbOcsku%2BQzhWCUHA4pzbvkIQh%2BEJGgPH9EEOzy4fJk53FubdzTInmwdiAloOd2LzxElF%2BpcUfPHazw7TP90TdQOIypyy%2BjVt49NZVH8tBI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cfb1620ff6456aa-OSL
content-encoding: br
X-Firefox-Spdy: h2
471 B IP
Hash a47b01a0facba395d9f5eda21d0ff7e4
db76169a395fcb168cce35a20f7d58921f84342b
3c1f7fe4d6cc7179ffb1a4e49bd33ce6a1b2b02f85e1ff3405fbf179a69ea406
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Oct 2024 02:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
200 OK 81 kB URL User Request GET HTTP/2 www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
IP
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (56760), with CRLF, LF line terminators
Hash f6ef54636fed60acce7db2f2aa60790c
c4b65feab739473e728996af69c9c45441fbf520
4186edd7e95d3c04ba69d52b066e03a0ddab686ed7659df1e61a683f17dce798
GET /?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.secprf.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.4.19
set-cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/favicon_256.png
200 OK 32 kB URL GET HTTP/2 www.lineahjemme.no/assets/images/favicon_256.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Hash 9dd37728725a420711b4ca3c8a2b24eb
4a48dcf49f27ed1107d7774fe899c7b042821158
a802b7185255ab96fe358b812a69c5ba656ef45fe45f1ef926209a1c977eed64
GET /assets/images/favicon_256.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: image/png
content-length: 32157
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "7d9d-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/favicon_16.png
200 OK 21 kB URL GET HTTP/2 www.lineahjemme.no/assets/images/favicon_16.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 3c52e046f96ec59f103e6eb695e40215
be850c3e8c48f0c423e57db3d1f79f86cfcd18d7
528ec3c385e48521c01273ce2f1405c642eb7a165a7bbca7da6dd357b10e67dd
GET /assets/images/favicon_16.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee; _cq_duid=1.1728442471.KTS7Qzdv0gd8N9Es; _cq_suid=1.1728442471.7FoCmVlySesHy8Sv; pmStorage={"etid":null,"pid":"3B81F662D768CBFE","referer":"https://r.secprf.com/","cc_statistics":true,"cc_marketing":true,"gacid":null,"gacid_source":null,"uid":null,"gclid":null,"fbp":null,"fbc":null,"cip":"0.0.0.0","gbraid":"","wbraid":"","ga4SessionId":null,"ga4SessionNumber":null,"em_md5":null,"em_sha256":null,"em":null}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:33 GMT
content-type: image/png
content-length: 20653
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "50ad-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET hamburger.maggieeatstheangel.com/tracker/tc_imp.gif?e=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&cri=CVTVkgP88G&ts=2078&cb=1728442473776
200 OK 43 B URL GET HTTP/2 hamburger.maggieeatstheangel.com/tracker/tc_imp.gif?e=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&cri=CVTVkgP88G&ts=2078&cb=1728442473776
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=CVTVkgP88G&ts=2078&cb=1728442473776 HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 09 Oct 2024 02:54:33 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash d3ff28c9d1efa81ddcf93b893f5b6957
758246acadfdba9d29b977d660f360b34b18e1df
42829e6ba351c52200ace93d67725befc1b549b8059a318c782cd604114aedfc
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 09 Oct 2024 02:54:33 GMT
Last-Modified: Wed, 09 Oct 2024 02:41:09 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yAkcCVpXcmlnZ1dlLmQmskYcnCXg6j4XGkBTOu8WdbjHzdVnhp-cYQ==
Age: 804
POST core.helloretail.com/serve/trackingUser
200 OK 68 B URL POST HTTP/2 core.helloretail.com/serve/trackingUser
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
Hash b9e241fb86c90658f22f72da44dffef6
c0b55aade0753d541983f8ba73b25c465f32bbbd
f18aae2eacbf74385002504ca14f5d28570972dcf90a27414709c8cea8d64622
POST /serve/trackingUser HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 2
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json
content-length: 68
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
GET core.helloretail.com/serve/init?websiteUuid=&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&trackingUserId=6705f06a4c3ec833cf9f78d8&v=4
200 OK 205 B URL GET HTTP/2 core.helloretail.com/serve/init?websiteUuid=&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&trackingUserId=6705f06a4c3ec833cf9f78d8&v=4
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
Hash 68fad194f05ac1009865eba3b9d567eb
92c1b1198e5fcce80bac4e9ce4b4f1e16bbb4118
6d580c9e7f555915d01c9e123cf6de9841e257a3b65a0fab80cbe50f75209580
GET /serve/init?websiteUuid=&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&trackingUserId=6705f06a4c3ec833cf9f78d8&v=4 HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json
content-length: 205
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
content-encoding: gzip
x-envoy-upstream-service-time: 6
server: istio-envoy
X-Firefox-Spdy: h2
GET core.helloretail.com/serve/setup?websiteUuid=ed34fae7-591b-4000-8fb4-3146da49394c&version=1723109798000
200 OK 1.3 kB URL GET HTTP/2 core.helloretail.com/serve/setup?websiteUuid=ed34fae7-591b-4000-8fb4-3146da49394c&version=1723109798000
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash f7c452fe26d505ffb2cb3957b444a85e
50f992f36a27716f98dff7d67a16fee8932e3229
126b4c5cc407c6e086d7aee012c71f50ab9f92c52d2dbf057139c528293967a2
GET /serve/setup?websiteUuid=ed34fae7-591b-4000-8fb4-3146da49394c&version=1723109798000 HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/javascript;charset=utf-8
content-length: 1333
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
cache-control: public, max-age=15552000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
content-encoding: gzip
x-envoy-upstream-service-time: 5
server: istio-envoy
X-Firefox-Spdy: h2
POST core.helloretail.com/serve/collect/pageview
200 OK 0 B URL POST HTTP/2 core.helloretail.com/serve/collect/pageview
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /serve/collect/pageview HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 259
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
x-envoy-upstream-service-time: 8
server: istio-envoy
X-Firefox-Spdy: h2
POST core.helloretail.com/partner/init.html
200 OK 1.1 kB URL POST HTTP/2 core.helloretail.com/partner/init.html
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
Hash 4e52bcd49f28d8214b43d53a2b29f12d
4ee5f8a01f6c5dcf45fb87e6b1ab47005f94e2ce
dc19e6e37a130de1dc388aee3bb70556b83bb4ae0e10fb2577cdbd701ac53dd4
POST /partner/init.html HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 373
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json;charset=utf-8
content-length: 1109
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-language: en-US
content-encoding: gzip
x-envoy-upstream-service-time: 22
server: istio-envoy
X-Firefox-Spdy: h2
POST core.helloretail.com/partner/save.html
200 OK 69 B URL POST HTTP/2 core.helloretail.com/partner/save.html
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
Hash 26453ded5ca4a5fc029e1ad5acdddbd5
c1202d906d4d55b742cfdf8acd0e84d635d177ff
2003a0daf0b88808d11a04daaf861e39f62e972d9a62865614e61120cda273cf
POST /partner/save.html HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 405
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json;charset=utf-8
content-length: 69
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-language: en-US
content-encoding: gzip
x-envoy-upstream-service-time: 3
server: istio-envoy
X-Firefox-Spdy: h2
POST core.helloretail.com/api/v1/search/refreshData
200 OK 20 kB URL POST HTTP/2 core.helloretail.com/api/v1/search/refreshData
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 8cc436f983eb824f7d5c9e92831571b0
d6e55e665923e8cb3401dc8b1ef10c4ab47df48b
b73efe3e96413aa05dbb999b375bf64850935ed3475799cc25f2de3553bcfbf3
POST /api/v1/search/refreshData HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 358
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-language: en-US
content-disposition: inline
content-encoding: gzip
x-envoy-upstream-service-time: 30
server: istio-envoy
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/hello_retail_runtime.js
200 OK 3.1 kB URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/hello_retail_runtime.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 8d38f01f2f8b63fa909b2d45e33529ad
4a4e4559a17946c7b8c665d3b1427fe394347f4f
eecac7fae97c5c94a5d4bf52f13dedb6eb2fbd0d49a3edcb07153e554a7d0db0
GET /scripts/hello_retail_runtime.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 3054
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 02:59:34 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JKxld2DnhjAI5DTHPV0ZIPQXRAp24875AZeaDIRU_l0EWYV00F1h7g==
age: 300
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_overlay_vanilla.js
200 OK 1.4 kB URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_overlay_vanilla.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash ec1d2e70eb4733d988c7f5dee4489dce
ea7f6e6da6bed910a7a7e16396844ef7c1fb4420
65bc2c62a211026c2c4cb40082f5a095127f4b593bc504a1a163f58371fa9a6f
GET /scripts/modules/ui_overlay_vanilla.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 1399
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:02:27 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fP-IOyrbbab51sJnbeKoaLsvY3LfHC2TDjkUUO3HiepuY9aJerYr2A==
age: 127
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_tabs_vanilla.js
200 OK 602 B URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_tabs_vanilla.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash b14780a2eeca3d2c7f4b3147f4f72c70
09bf9ddde115fba10a324fc7b249c3a86e7bb42f
8d3a7ce645d90de7b4f48a96db7bfb46ec73fdc063a1b346ddc2640e53378f69
GET /scripts/modules/ui_tabs_vanilla.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 602
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:03:32 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CWow-NVLBvhravxq7xB_Lym6S06_x8CvPiaHhs8BssECQFNsovVKbQ==
age: 62
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/search_redirects.js
200 OK 421 B URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/search_redirects.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash dbda9ca23ca2cdae1a24e0b89f6431a4
58c44cb604b483eef771b4d1c97ab739a0cdfffe
48a5adc9cf446728abfc4da23512b8966137abdd4bda64fc6f5615a44b120e16
GET /scripts/modules/search_redirects.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 421
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:03:39 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vnzBFtY5S5niFMK0o9lCs7qE_7xIHYKaF5Ti0kAAkB5NtvA3wWJ6qQ==
age: 55
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/hash_storage.js
200 OK 963 B URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/hash_storage.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 465eca349f4712f5e75999cd2ca3f7c1
36e142ff24ea2470726347b19136c9a06fb71c3a
01eb3631c5f8abb33ce79a1db80762a6dd301947151e8917465332ae9ad082fe
GET /scripts/modules/hash_storage.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 963
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:00:22 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n9D5waEMdw9PoxbvXodoSKZ5_VwSLWsFbnUF_XiGEs8RjIJmk0u6ng==
age: 252
X-Firefox-Spdy: h2
POST core.helloretail.com/api/v1/search/redirectsData
200 OK 3.5 kB URL POST HTTP/2 core.helloretail.com/api/v1/search/redirectsData
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.addwish.com
Fingerprint51:4D:0C:A5:76:74:AC:2B:70:60:D4:F6:6C:0A:CD:6A:D6:25:E6:FC
ValiditySun, 01 Sep 2024 00:00:00 GMT - Sun, 28 Sep 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 13e0f3eab4e8a018d981a51830b2441e
f4f61fe48cf8dbd194cd881a1b0cb960d1e7fa12
6b3a073e67a334b540fc996cef358ee192ff796332dec5638dba5394a77f751f
POST /api/v1/search/redirectsData HTTP/1.1
Host: core.helloretail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 88
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:34 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: https://www.lineahjemme.no
vary: Origin,Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-language: en-US
content-disposition: inline
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_utility_vanilla.js
200 OK 3.9 kB URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/ui_utility_vanilla.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text
Hash a3c3d04adfd44b7ae5517edba241615d
9f756ab57462c96759c7f06ddd6f9784352bc797
3f73a7875d7683cc1180af4ae43f9d1fd90b5a7d6157b76d87a77f89de89f358
GET /scripts/modules/ui_utility_vanilla.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 3865
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 21
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:02:27 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iGpf3wBY8KyIPKLavtkA5RexLUu0vcbMJLECeVde8X36aeXM2Ai3Dw==
age: 127
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/style_loader.js
200 OK 662 B URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/style_loader.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash 32f9343c8c9e8da80b20bb15b01d64fd
5af1711e90558aca131c4676554a5b9aa8dfbc98
f38283c5448784762f649f43172643b3a2d77581b7ca4f9d94ab93c4e25f6a60
GET /scripts/modules/style_loader.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 662
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 02:57:06 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8K4Vw2b7nMXt7BOG-164-AT8lOJs-SQrSnnhYBsc2WENiqeuvwT4QA==
age: 448
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/overlay.css
200 OK 133 B URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/overlay.css
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Hash c8bbe250e9a0341abf2e0eeac27eefd9
5335529177d9b60ff8991e8010d3c4e531590189
f02eaf7efdf62cd083823a791f2736944f51703e81b2e00c228cfb0dfa24785d
GET /scripts/modules/overlay.css HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css;charset=utf-8
content-length: 133
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
date: Wed, 09 Oct 2024 02:39:17 GMT
cache-control: public, max-age=3600
expires: Wed, 09 Oct 2024 03:34:36 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U5C7RQ4eokDnsin2AXLO0Gcglw-_1dj8n8qkIPfTmFdaEzhUhI6Qtg==
age: 1198
X-Firefox-Spdy: h2
POST hamburger.maggieeatstheangel.com/mon
200 OK 0 B URL POST HTTP/2 hamburger.maggieeatstheangel.com/mon
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2494
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.lineahjemme.no
content-type: application/json
date: Wed, 09 Oct 2024 02:54:34 GMT
content-length: 0
X-Firefox-Spdy: h2
POST hamburger.maggieeatstheangel.com/mon
200 OK 0 B URL POST HTTP/2 hamburger.maggieeatstheangel.com/mon
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1716
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.lineahjemme.no
content-type: application/json
date: Wed, 09 Oct 2024 02:54:36 GMT
content-length: 0
X-Firefox-Spdy: h2
POST hamburger.maggieeatstheangel.com/mon
200 OK 0 B URL POST HTTP/2 hamburger.maggieeatstheangel.com/mon
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1716
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.lineahjemme.no
content-type: application/json
date: Wed, 09 Oct 2024 02:54:38 GMT
content-length: 0
X-Firefox-Spdy: h2
POST hamburger.maggieeatstheangel.com/mon
200 OK 0 B URL POST HTTP/2 hamburger.maggieeatstheangel.com/mon
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1719
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.lineahjemme.no
content-type: application/json
date: Wed, 09 Oct 2024 02:54:43 GMT
content-length: 0
X-Firefox-Spdy: h2
POST hamburger.maggieeatstheangel.com/mon
200 OK 0 B URL POST HTTP/2 hamburger.maggieeatstheangel.com/mon
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1719
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Cookie: cg_uuid=c0091786727de792896798c628e8d1ee
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.lineahjemme.no
content-type: application/json
date: Wed, 09 Oct 2024 02:54:48 GMT
content-length: 0
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/company/awAddGift.js
200 OK 130 kB URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/company/awAddGift.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Size 130 kB (129968 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/company/awAddGift.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 09 Oct 2024 02:51:56 GMT
content-language: en-US
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:01:56 GMT
content-encoding: gzip
x-envoy-upstream-service-time: 2
server: istio-envoy
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bWl4UyfzelN7A0SDijG__Fv4Cn3gf_lI9YtaekILcIXpmImkoFCZPg==
age: 156
X-Firefox-Spdy: h2
GET hamburger.maggieeatstheangel.com/ct?id=15138&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1728442471698&hl=3&op=0&ag=718972423&rand=5371209971702012201202766157689267929662602787202286758007115172560119861508094029762&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fr.secprf.com%2F&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=CVTVkgP88G&pto=2237&ver=62&gac=-&mei=&ap=&fe=1&duid=1.1728442471.KTS7Qzdv0gd8N9Es&suid=1.1728442471.7FoCmVlySesHy8Sv&tuid=1.1728442471.ZgAfrEDHIOZ7MdQk&fbc=->m=W10%3D&it=40%2C887%2C197&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D
200 OK 3.4 kB URL GET HTTP/2 hamburger.maggieeatstheangel.com/ct?id=15138&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1728442471698&hl=3&op=0&ag=718972423&rand=5371209971702012201202766157689267929662602787202286758007115172560119861508094029762&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fr.secprf.com%2F&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=CVTVkgP88G&pto=2237&ver=62&gac=-&mei=&ap=&fe=1&duid=1.1728442471.KTS7Qzdv0gd8N9Es&suid=1.1728442471.7FoCmVlySesHy8Sv&tuid=1.1728442471.ZgAfrEDHIOZ7MdQk&fbc=->m=W10%3D&it=40%2C887%2C197&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerZeroSSL
Subject*.maggieeatstheangel.com
FingerprintD9:16:71:74:E5:78:F0:F6:12:55:95:02:E5:2D:BB:EE:D0:67:77:7B
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3366), with no line terminators
Hash 5e2569ce8378eaac4f4204c427d2bcea
7ddd09f3fd4c6c21ec58012ab481ac5a7bdf524e
9071ef3f08f1cefb215da05f423525e5512e327371af803a026c6e497bbf83fc
GET /ct?id=15138&url=https%3A%2F%2Fwww.lineahjemme.no%2F%3Futm_source%3Dtradetracker%26utm_medium%3Daffiliate%26utm_campaign%3DYieldKit&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1728442471698&hl=3&op=0&ag=718972423&rand=5371209971702012201202766157689267929662602787202286758007115172560119861508094029762&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=https%3A%2F%2Fr.secprf.com%2F&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=CVTVkgP88G&pto=2237&ver=62&gac=-&mei=&ap=&fe=1&duid=1.1728442471.KTS7Qzdv0gd8N9Es&suid=1.1728442471.7FoCmVlySesHy8Sv&tuid=1.1728442471.ZgAfrEDHIOZ7MdQk&fbc=->m=W10%3D&it=40%2C887%2C197&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Og%3D%3D HTTP/1.1
Host: hamburger.maggieeatstheangel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 09 Oct 2024 02:54:33 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=c0091786727de792896798c628e8d1ee; Max-Age=29030400; Path=/; Expires=Wed, 10 Sep 2025 02:54:33 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: https://www.lineahjemme.no
content-length: 1073
X-Firefox-Spdy: h2
GET payment-widget.avarda.com/cdn/payment-widget.js?ts=1728442320
200 OK 426 kB URL GET HTTP/2 payment-widget.avarda.com/cdn/payment-widget.js?ts=1728442320
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerDigiCert Inc
Subjectpayment-widget.avarda.com
Fingerprint49:21:B1:F4:8B:9C:4A:44:6D:67:C2:D8:8D:75:D7:5A:FD:8B:32:13
ValidityWed, 04 Sep 2024 00:00:00 GMT - Thu, 04 Sep 2025 23:59:59 GMT
Size 426 kB (426534 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/payment-widget.js?ts=1728442320 HTTP/1.1
Host: payment-widget.avarda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:31 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 30 Sep 2024 12:47:35 GMT
x-ms-request-id: c0cdf018-b01e-0053-7040-16068f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20241009T025431Z-1658df7ff64rzffsppa2d5u6mc000000074g000000003uhu
x-fd-int-roxy-purgeid: 76801717
x-cache: TCP_HIT
content-encoding: br
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409
Hash 4c45bdb0ac15f12a01bfecf77157cdbd
9193ce5219cefe1d54794e445d72c23cab3de03a
6fee568ee1e985a28351734213271ab3c518744bb3819af52246e1b7d15b7372
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lineahjemme.no
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Oct 2024 01:26:20 GMT
expires: Sun, 05 Oct 2025 01:26:20 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:00:42 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 350893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.lineahjemme.no/assets/images/logo_x130.png
200 OK 46 kB URL GET HTTP/2 www.lineahjemme.no/assets/images/logo_x130.png
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
File type PNG image data, 460 x 104, 8-bit/color RGBA, non-interlaced
Hash 5f1a0f1f22664d03e3442f25cc474086
50eb96cec5609130991f026fe43bcf24041d0b4c
fc0d958e21e98aa3eacd45569a3fbc309744b9b20bfcec483d7d4a0a388bc3ec
GET /assets/images/logo_x130.png HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: image/png
content-length: 46387
last-modified: Tue, 08 Oct 2024 05:43:33 GMT
etag: "b533-623f09e2aeb40"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET www.linkbux.com/track/8c04JITxTELG9VBhdffzO6huThWSGUxNql8WGg_atoswbTlvrGHHFeg0gVb84OtBqWqVaLpI7irRm?url=https%3A%2F%2Fwww.lineahjemme.no&uid=4de4ad5b73vvrf31&uid2={sub1}
200 OK 1.3 kB URL User Request GET HTTP/1.1 www.linkbux.com/track/8c04JITxTELG9VBhdffzO6huThWSGUxNql8WGg_atoswbTlvrGHHFeg0gVb84OtBqWqVaLpI7irRm?url=https%3A%2F%2Fwww.lineahjemme.no&uid=4de4ad5b73vvrf31&uid2={sub1}
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Certificate IssuerDigiCert, Inc.
Subject*.linkbux.com
FingerprintD9:8F:9A:AE:D8:42:D1:6E:85:C3:74:0F:A0:0F:07:95:56:A2:62:1A
ValidityWed, 10 Jul 2024 00:00:00 GMT - Sun, 10 Aug 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1312), with no line terminators
Hash 382ddaf8e445445386d8927be2882f8e
3ea35eb57ddf0ae7a411e3d3bd023a8a3c3057c6
710f0e86319b0db8cb816f598b971a1881af615c37e2d678dc6ec8e9d60dca06
GET /track/8c04JITxTELG9VBhdffzO6huThWSGUxNql8WGg_atoswbTlvrGHHFeg0gVb84OtBqWqVaLpI7irRm?url=https%3A%2F%2Fwww.lineahjemme.no&uid=4de4ad5b73vvrf31&uid2={sub1} HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.optnx.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 09 Oct 2024 02:54:28 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=GxHd1fTz; expires=Fri, 08-Nov-2024 02:54:28 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache33.l2us2[131,0], cache5.ru6[305,0]
Timing-Allow-Origin: *
EagleId: a3b5019917284424685446617e
GET www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Js/fabric.min.js?v=1728366121
200 OK 297 kB URL GET HTTP/2 www.lineahjemme.no/_itcm/Core/Widgets/Standard/Image/Assets/Js/fabric.min.js?v=1728366121
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerLet's Encrypt
Subjectlineahemma.se
FingerprintF0:07:69:5A:91:D2:88:62:75:B7:4E:6E:F4:27:D7:45:72:7B:42:98
ValidityMon, 02 Sep 2024 11:05:51 GMT - Sun, 01 Dec 2024 11:05:50 GMT
Size 297 kB (297152 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_itcm/Core/Widgets/Standard/Image/Assets/Js/fabric.min.js?v=1728366121 HTTP/1.1
Host: www.lineahjemme.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Cookie: PHPSESSID=ati5oo6fkbnim36qkp049nnoee
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 09 Oct 2024 02:54:30 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2024 05:42:01 GMT
etag: "488c0-623f098af1c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
GET d1pna5l3xsntoj.cloudfront.net/scripts/modules/search_instance.js
200 OK 15 kB URL GET HTTP/2 d1pna5l3xsntoj.cloudfront.net/scripts/modules/search_instance.js
IP
Requested by https://www.lineahjemme.no/?utm_source=tradetracker&utm_medium=affiliate&utm_campaign=YieldKit
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text
Hash db0e09097b5c7f4ec188c53c4d1e6026
d90f13cfc4c6065bda0ebc78e09062c11111efee
a272a7c8a267d5399da726c52c7b1f72f8b39502df34a30ff29324dd24dd3125
GET /scripts/modules/search_instance.js HTTP/1.1
Host: d1pna5l3xsntoj.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.lineahjemme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 3456
content-language: en-US
last-modified: Tue, 08 Oct 2024 12:48:50 GMT
accept-ranges: bytes
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
date: Wed, 09 Oct 2024 02:54:34 GMT
cache-control: public, max-age=600
expires: Wed, 09 Oct 2024 03:00:22 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w0Bn2qq4Gt3dhrLWWhJ0VjPyIlJ6OobkMufGoYki7ZuH0T5jL3UB9Q==
age: 252
X-Firefox-Spdy: h2
185.162.87.220
54.171.24.1
23.36.77.32
172.67.211.157
18.195.189.1
34.252.139.208
163.181.1.227
0.0.0.0