www.kzjs4rtk.com/4T2F56/FGXLG/
34.107.199.247302 Found 223 B URL HTTP/1.1 www.kzjs4rtk.com/4T2F56/FGXLG/
IP 34.107.199.247:0
File type HTML document, ASCII text
Hash 85fe2d0f68e048979dc4ae16605912df
6234ee73bb0453f1fb9e6b3f38c0d076be02cd1a
fa6cd4a71ce1af0f678265ce909fc34a21ea70c1a2dbdc9a67eeaf61c4138dcf
Analyzer Verdict Alert fortinet Malware
GET /4T2F56/FGXLG/ HTTP/1.1
Host: www.kzjs4rtk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
server: nginx
date: Thu, 24 Nov 2022 20:24:02 GMT
content-type: text/html; charset=utf-8
content-length: 223
location: https://www.c9ikptk.com/4T2F56/BP658/?__rpt=0&__po=9&__ptid=b5393b90078e413a8d108c58adb90f7c&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9
set-cookie: uniqueClick_FGXLG=149eef25-621c-4e5d-b146-1f3868491929:1669321442; Path=/; Expires=Thu, 08 Dec 2022 20:24:02 GMT; SameSite=None
vary: Origin
x-eflow-request-id: f0eea03f-e6d2-4e4e-86c9-3ef4b0879205
Via: 1.1 google
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2347
Expires: Thu, 24 Nov 2022 21:03:09 GMT
Date: Thu, 24 Nov 2022 20:24:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4864
Cache-Control: max-age=142093
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:02 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:52:15 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 20:19:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 302
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4314
Expires: Thu, 24 Nov 2022 21:35:56 GMT
Date: Thu, 24 Nov 2022 20:24:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: N1zfAkIMDQ6AN0prB9uJvtkO2J3gsyQmgwsEC1V6HeGRSl2xVK3j8Kvsmkqjgh/X9TfM6ktQsn4=
x-amz-request-id: 9FMGQP5R1SDCSMS0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 19:40:31 GMT
age: 2611
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 20:24:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 20:08:53 GMT
cache-control: public,max-age=3600
age: 909
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3320
Cache-Control: max-age=135486
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:03 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:02:09 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ux4TkJWlarqlcpb81BIliw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X66hMvqiX46AjawbMh4wZCaPYks=
www.c9ikptk.com/4T2F56/BP658/?__rpt=0&__po=9&__ptid=b5393b90078e413a8d108c58adb90f7c&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9
34.107.199.247302 Found 57 B URL HTTP/2 www.c9ikptk.com/4T2F56/BP658/?__rpt=0&__po=9&__ptid=b5393b90078e413a8d108c58adb90f7c&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9
IP 34.107.199.247:0
File type HTML document, ASCII text
Hash fac34a702735ac79294c0ff2645951dc
bb025946516e373af1fb36abe2e300af88fda6be
a4cbd7e80e4d2c050331282c60cd52fb8af96d7f86f71c61a0da55d6d1a4e9f6
GET /4T2F56/BP658/?__rpt=0&__po=9&__ptid=b5393b90078e413a8d108c58adb90f7c&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9 HTTP/1.1
Host: www.c9ikptk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Thu, 24 Nov 2022 20:24:03 GMT
content-type: text/html; charset=utf-8
content-length: 57
location: http://p.npcad.com/go/89517/482729
set-cookie: uniqueClick_BP658=ec6f5ded-9516-4ecd-a728-968f253ef004:1669321443; Path=/; Expires=Thu, 01 Dec 2022 20:24:03 GMT; Secure; SameSite=None
transaction_id=d3aa8a411eb84ecd86ebfa082493ac49; Path=/; Expires=Wed, 22 Feb 2023 20:24:03 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: b8d4f319-458d-4513-97d8-f25cf5b664f4
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash a715605168aa872ffd78a5747e0e7d48
12bcb429f4fbd5c27381c5f62affdb7cf8bed3a7
b3c7ecfa9b07002e104d7f712462d2f166c512e568cf770e3039720b16b4a44b
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 20:24:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 19:27:47 GMT
Expires: Fri, 25 Nov 2022 19:27:47 GMT
ETag: "12bcb429f4fbd5c27381c5f62affdb7cf8bed3a7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
p.npcad.com/go/89517/482729
52.20.154.189200 OK 270 B URL HTTP/1.1 p.npcad.com/go/89517/482729
IP 52.20.154.189:0
File type HTML document, ASCII text
Hash bb337470df521e6449ccaff0d6fa089c
1d0f54d895560733b3a06eae64a78734f79f0903
4170f729c607096179fe70befd28aa318102eb10839290ac8f40ffcff0fd3be1
Analyzer Verdict Alert fortinet Phishing
GET /go/89517/482729 HTTP/1.1
Host: p.npcad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Thu, 24 Nov 2022 20:24:03 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 270
Connection: keep-alive
p.npcad.com/ad/ad?p=89517&w=482729&t=09d195e570551c55&r=&vw=1280&vh=0
52.20.154.189303 See Other 0 B URL HTTP/1.1 p.npcad.com/ad/ad?p=89517&w=482729&t=09d195e570551c55&r=&vw=1280&vh=0
IP 52.20.154.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=89517&w=482729&t=09d195e570551c55&r=&vw=1280&vh=0 HTTP/1.1
Host: p.npcad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.npcad.com/go/89517/482729
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Thu, 24 Nov 2022 20:24:04 GMT
Location: http://dipaka-ead.com/zcvisitor/f0534953-6c35-11ed-b631-126cf364109b/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=b999ffc0-6024-11ed-9380-0a918cbcbb97#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13035
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:24:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13035
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:24:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13035
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:24:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 81418
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 80804
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 47397
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 80410
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 81257
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 47322
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash a715605168aa872ffd78a5747e0e7d48
12bcb429f4fbd5c27381c5f62affdb7cf8bed3a7
b3c7ecfa9b07002e104d7f712462d2f166c512e568cf770e3039720b16b4a44b
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 20:24:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 19:27:47 GMT
Expires: Fri, 25 Nov 2022 19:27:47 GMT
ETag: "12bcb429f4fbd5c27381c5f62affdb7cf8bed3a7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
dipaka-ead.com/zcvisitor/f0534953-6c35-11ed-b631-126cf364109b/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=b999ffc0-6024-11ed-9380-0a918cbcbb97
3.212.50.125302 0 B URL HTTP/1.1 dipaka-ead.com/zcvisitor/f0534953-6c35-11ed-b631-126cf364109b/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=b999ffc0-6024-11ed-9380-0a918cbcbb97
IP 3.212.50.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/f0534953-6c35-11ed-b631-126cf364109b/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=b999ffc0-6024-11ed-9380-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Thu, 24 Nov 2022 20:24:04 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://bnr.thedataclicks.com/get/L5s8VkXi8c5g4TxkRihV2mty?target=sierra-lea-upsg9ewaw&source=vitellary-lion&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&match=&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1979020&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&campaignName=ZP5+-+EUR+-+NO&cost=0.000400&carrier=unknown&browser=Firefox&deviceId=®ion=OSLO&city=Oslo&operatingSystem=
Server: jAwYVkEu
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash f183cd6da82302ff442ef80c004b1cc8
a115f01cbaeab5674b57f64f01356654020e5e80
3ef036fa23c4fcbe601c9e060691ac6ae5f60b1d1a25a8c803a6c9af66c8c032
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128899
Date: Thu, 24 Nov 2022 20:24:04 GMT
Etag: "637f0e24-1d7"
Expires: Sat, 26 Nov 2022 08:12:23 GMT
Last-Modified: Thu, 24 Nov 2022 06:24:36 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AV_AWLGW3bzHC4PBWF5Kb5cGhPegQP_pILotfUyhKh3evfeuSzY2Yw==
Age: 6467
bnr.thedataclicks.com/get/L5s8VkXi8c5g4TxkRihV2mty?target=sierra-lea-upsg9ewaw&source=vitellary-lion&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&match=&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1979020&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&campaignName=ZP5+-+EUR+-+NO&cost=0.000400&carrier=unknown&browser=Firefox&deviceId=®ion=OSLO&city=Oslo&operatingSystem=
52.204.89.116200 OK 1.7 kB URL HTTP/2 bnr.thedataclicks.com/get/L5s8VkXi8c5g4TxkRihV2mty?target=sierra-lea-upsg9ewaw&source=vitellary-lion&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&match=&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1979020&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&campaignName=ZP5+-+EUR+-+NO&cost=0.000400&carrier=unknown&browser=Firefox&deviceId=®ion=OSLO&city=Oslo&operatingSystem=
IP 52.204.89.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (919)
Hash 4f199df32dee728bcb2f1ed578e44dc3
17a9593e6ea155577a52f14a57d67ed8e331e55c
bf8ed188d9f3a1e59de8c361a7f7c065d37609d20e5f72d136212f8b6c873910
GET /get/L5s8VkXi8c5g4TxkRihV2mty?target=sierra-lea-upsg9ewaw&source=vitellary-lion&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&match=&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1979020&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&campaignName=ZP5+-+EUR+-+NO&cost=0.000400&carrier=unknown&browser=Firefox&deviceId=®ion=OSLO&city=Oslo&operatingSystem= HTTP/1.1
Host: bnr.thedataclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Thu, 24 Nov 2022 20:24:05 GMT
content-type: text/html
content-length: 1697
X-Firefox-Spdy: h2
d1aaucsx2ftut2.cloudfront.net/jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg
143.204.42.138200 OK 184 kB URL HTTP/2 d1aaucsx2ftut2.cloudfront.net/jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg
IP 143.204.42.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 800x575, components 3\012- data
Size 184 kB (184529 bytes)
Hash ef60018c5db320c478ea0738b33966e5
9dd467554cf4b76fc7df3eaac3766d29bdb2b543
9789121067d1f5aa7eeb3267b926014932e6d089fa6053ff05289875f9b262e5
GET /jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg HTTP/1.1
Host: d1aaucsx2ftut2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bnr.thedataclicks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 184529
last-modified: Wed, 15 Apr 2020 16:57:11 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 00:26:40 GMT
etag: "ef60018c5db320c478ea0738b33966e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3-rlj7bwQvYC104YlFXBm9FXe1u2UOy6O_kLme2JN2ZhABywIKk6-A==
age: 80704
X-Firefox-Spdy: h2
bnr.thedataclicks.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&c2=true&vpw=1280&vph=1024
52.204.89.116200 OK 1.9 kB URL HTTP/2 bnr.thedataclicks.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&c2=true&vpw=1280&vph=1024
IP 52.204.89.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1456)
Hash 368a548abd821a3660a6f21b8e6acb16
4ea142c7e65c5689de4854e28d3d3d6fb18f8a0b
b3c71d5307a8023bb0562607e9aeddd68ebaab123bfaa089e19423f7f2f08c22
GET /trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&c2=true&vpw=1280&vph=1024 HTTP/1.1
Host: bnr.thedataclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bnr.thedataclicks.com/get/L5s8VkXi8c5g4TxkRihV2mty?target=sierra-lea-upsg9ewaw&source=vitellary-lion&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&match=&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1979020&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&campaignName=ZP5+-+EUR+-+NO&cost=0.000400&carrier=unknown&browser=Firefox&deviceId=®ion=OSLO&city=Oslo&operatingSystem=
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: awselb/2.0
date: Thu, 24 Nov 2022 20:24:05 GMT
content-type: text/html
content-length: 1933
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d173b03560b42e823246865fb1b43c4f
cf2e73b3978dad50e09f0dfbab4dad01dd2c086c
8bde4eb6fb686a77b9c74f0a709df37748d880a78d83b13d1a2c43476baadd27
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99085
Date: Thu, 24 Nov 2022 20:24:06 GMT
Etag: "637ea083-1d7"
Expires: Fri, 25 Nov 2022 23:55:31 GMT
Last-Modified: Wed, 23 Nov 2022 22:36:51 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q_lWXvPPrmLlnsGh__Im2YlPj_ZCce5NtEsh-wJ4smQSGSrDxdM5TA==
Age: 4720
lnk.clickadsolutions.com/js/c.js
34.226.38.159200 OK 7.8 kB URL HTTP/2 lnk.clickadsolutions.com/js/c.js
IP 34.226.38.159:0
Hash 28f147c32edde42fcfabfc9cfa93edcd
4540d4c6db74de7651a1fe723ea0aa563b4c0678
e762d6ca1ddd7dab2fa0db7702efdbd3bc10e6f7f3be7b0f8818d45d5bcb96d7
GET /js/c.js HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&c2=true&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&vph=1024&vpw=1280&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d
Cookie: v=t; cas=3373:1788:1788:1; rls=291098:1788:1788:1; com=17151:156:NO:1788:1788:1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:07 GMT
content-type: application/javascript
content-length: 7804
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 24 Oct 2022 15:54:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&tid=UA-140793423-3&t=pageview&ds=web&aip=1&cs=partnerads&cm=affiliate&cn=44549&cc=%28not+set%29&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1671779450.1542664601
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&tid=UA-140793423-3&t=pageview&ds=web&aip=1&cs=partnerads&cm=affiliate&cn=44549&cc=%28not+set%29&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1671779450.1542664601
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&tid=UA-140793423-3&t=pageview&ds=web&aip=1&cs=partnerads&cm=affiliate&cn=44549&cc=%28not+set%29&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1671779450.1542664601 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 23 Nov 2022 23:42:52 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 74475
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?cs=Tredia&cc=291098&ck=42259&cm=Partner+Ads&cn=Iviskin&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1413590655.1286908923
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?cs=Tredia&cc=291098&ck=42259&cm=Partner+Ads&cn=Iviskin&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1413590655.1286908923
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?cs=Tredia&cc=291098&ck=42259&cm=Partner+Ads&cn=Iviskin&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.iviskin.no&dp=%2F&dt=IVISKIN+-+IPL+H%C3%A5rfjerning+-+K%C3%A5ret+til+best+i+test+2022+-+100%25+forn%C3%B8ydgaranti&dr=lnk.thebigadsstore.com%2Fref%2Fhttps%3A%2F%2Fwww.jbl.no%2F&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1413590655.1286908923 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 23 Nov 2022 23:42:52 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 74475
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lnk.clickadsolutions.com/?bt=lnk.thebigadsstore.com&ref=https%3A%2F%2Fwww.jbl.no%2F&friend=&u=www.partner-ads.com%252Fno%252Fklikbanner.php%253Fpartnerid%253D44549%2526bannerid%253D93370%2526uid%253D637fd2e6e8dc0202521ac5dd-RL-291098%2526uid2%253Dlnk.thebigadsstore.com%25252Fref%25252Fwww.jbl.no%25252F&log=false&type=ROTATOR_LINK&linkId=291098&clickId=637fd2e6e8dc0202521ac5dd&br=false
34.226.38.159200 OK 1.8 kB URL HTTP/2 lnk.clickadsolutions.com/?bt=lnk.thebigadsstore.com&ref=https%3A%2F%2Fwww.jbl.no%2F&friend=&u=www.partner-ads.com%252Fno%252Fklikbanner.php%253Fpartnerid%253D44549%2526bannerid%253D93370%2526uid%253D637fd2e6e8dc0202521ac5dd-RL-291098%2526uid2%253Dlnk.thebigadsstore.com%25252Fref%25252Fwww.jbl.no%25252F&log=false&type=ROTATOR_LINK&linkId=291098&clickId=637fd2e6e8dc0202521ac5dd&br=false
IP 34.226.38.159:0
Hash 071bb33a92533e87011b95e8f6977ee4
df449ec6ddfe48cb0bbbb3be5369463d456b42b3
7e0ce22c67f41820233098e54a08c0505d4ec0f4d9f1634fb760e1019dbfe09d
GET /?bt=lnk.thebigadsstore.com&ref=https%3A%2F%2Fwww.jbl.no%2F&friend=&u=www.partner-ads.com%252Fno%252Fklikbanner.php%253Fpartnerid%253D44549%2526bannerid%253D93370%2526uid%253D637fd2e6e8dc0202521ac5dd-RL-291098%2526uid2%253Dlnk.thebigadsstore.com%25252Fref%25252Fwww.jbl.no%25252F&log=false&type=ROTATOR_LINK&linkId=291098&clickId=637fd2e6e8dc0202521ac5dd&br=false HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&c2=true&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&vph=1024&vpw=1280&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d
Cookie: v=t; cas=3373:1788:1788:1; rls=291098:1788:1788:1; com=17151:156:NO:1788:1788:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:07 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2d7a1c8a669695a5b128a3cdb4ac4ea9
87f300121bd5ba8718b9fec31156a07b99391ca1
f7c403da3651e179c7ce2e1139209d338b150b2323f0e446f8e6b218177a9656
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113126
Date: Thu, 24 Nov 2022 20:24:07 GMT
Etag: "637ed5c2-1d7"
Expires: Sat, 26 Nov 2022 03:49:33 GMT
Last-Modified: Thu, 24 Nov 2022 02:24:02 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NLneYkO3CjgO8MevB2xWT5iaVq_GYjx7Lz_WaNqD-V4OhlSJUq5f8g==
Age: 5132
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a6418b5176fca2c2b106478c3ed6c0f1
ec576b339092fae1865efa4896fdf7cf756cb49b
d1d7fe1ec23660bcdd8d91804cb2932d906bb9f9976f9fd245bae134295dbc4e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 20:24:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 03:33:26 GMT
Expires: Tue, 29 Nov 2022 03:33:25 GMT
Etag: "ec576b339092fae1865efa4896fdf7cf756cb49b"
Cache-Control: max-age=370757,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f4ddc8b9b5b4f4-OSL
www.partner-ads.com/no/klikbanner.php?partnerid=44549&bannerid=93370&uid=637fd2e6e8dc0202521ac5dd-RL-291098&uid2=lnk.thebigadsstore.com%2Fref%2Fwww.jbl.no%2F
185.21.41.211302 Found 0 B URL HTTP/1.1 www.partner-ads.com/no/klikbanner.php?partnerid=44549&bannerid=93370&uid=637fd2e6e8dc0202521ac5dd-RL-291098&uid2=lnk.thebigadsstore.com%2Fref%2Fwww.jbl.no%2F
IP 185.21.41.211:0
ASN #48854 team.blue Denmark A/S
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /no/klikbanner.php?partnerid=44549&bannerid=93370&uid=637fd2e6e8dc0202521ac5dd-RL-291098&uid2=lnk.thebigadsstore.com%2Fref%2Fwww.jbl.no%2F HTTP/1.1
Host: www.partner-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.thebigadsstore.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 24 Nov 2022 20:24:07 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: uid=637fd2e6e8dc0202521ac5dd-RL-291098; expires=Tue, 03-Jan-2023 20:24:07 GMT; Max-Age=3456000; path=/
uid2=lnk.thebigadsstore.com%2Fref%2Fwww.jbl.no%2F; expires=Tue, 03-Jan-2023 20:24:07 GMT; Max-Age=3456000; path=/
cprogramid=9462; expires=Tue, 03-Jan-2023 20:24:07 GMT; Max-Age=3456000; path=/
cpartnerid=44549; expires=Tue, 03-Jan-2023 20:24:07 GMT; Max-Age=3456000; path=/
location: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Content-Length: 0
Connection: close
Content-Type: text/html; charset=iso-8859-1
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e3303a3ee47f1aaaaf7b4fac644f5d6b
527c5409967671ba41e20ac829eb1b8f8c395a23
128a75e913e39805f357963ca8134c7ff2f8110baec80899de0b234f958800d0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "128A75E913E39805F357963CA8134C7FF2F8110BAEC80899DE0B234F958800D0"
Last-Modified: Thu, 24 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15276
Expires: Fri, 25 Nov 2022 00:38:43 GMT
Date: Thu, 24 Nov 2022 20:24:07 GMT
Connection: keep-alive
www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
172.67.69.130200 OK 32 kB URL HTTP/2 www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
IP 172.67.69.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16550), with CRLF, LF line terminators, with escape sequences
Hash 265a972a0e790e973b96a22c896f4d5d
1d1efa4cfbfe22c6483a5194249d0a639e2a388a
be9c707ca04e105fc5432185aab6c040932eedbbb0d5961a3de7611c7109e791
GET /?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lnk.thebigadsstore.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.26
link: <https://www.iviskin.no/wp-json/>; rel="https://api.w.org/", <https://www.iviskin.no/wp-json/wp/v2/pages/5807>; rel="alternate"; type="application/json", <https://www.iviskin.no/>; rel=shortlink
set-cookie: partner-ads-query=eyJwYS1wYXJ0bmVyaWQiOiI0NDU0OSIsInBhY2lkIjoiNjM3ZmQyZTdjNzA3MTkuMzM0Mzk1NjEifQ%3D%3D; expires=Tue, 03-Jan-2023 20:24:08 GMT; Max-Age=3456000; path=/
cache-control: max-age=0
expires: Thu, 24 Nov 2022 20:24:07 GMT
vary: Accept-Encoding
x-varnish: 21041644
age: 0
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W5xpaKemefpaBToIIRw1O7%2FvjhzPfPS6rFxY9k23gYMAyNoKRPvSP4qhIQHuHvxyJgWZjPWaEweC9QzVte8EFnSjj7iIxDOaRlKU5EYtjH8hc1BZMep6639WtDJEUtY3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddc988aeb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.67.69.130200 OK 4.2 kB URL HTTP/2 www.iviskin.no/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.67.69.130:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 4169
last-modified: Thu, 27 Jan 2022 14:53:59 GMT
cache-control: public, max-age=31536000
expires: Tue, 26 Sep 2023 06:39:47 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 498762505 40010422
age: 4942481
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DS%2Fj7zFA3FdGRiNY988Qmo%2B5bhDgJted0uQTlXmk77bhd5UKzy4grksWxfA39KsoZR7T63F%2BnkF7jPKRx48NWBQYhu6XmibjgVGPmC4ofCPyMIgAPdhUzKzY%2B%2BOzXDNk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf5cfdb521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
172.67.69.130200 OK 982 B URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 172.67.69.130:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 982
last-modified: Tue, 08 Nov 2022 22:25:09 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 197511803
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XEPdeUyUpP5Jd9SwmJ%2Fa%2BPKuMUZbUp27DT0x9y62le4tIsrcZfOTardVKHUiRc1cHtpHKAyZdya%2B4EeTxbUqN0Gecse8HHwVUiLXm4LjX3i8k8h3PYyMr%2F7a7yxRTX%2Bn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf6d04b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
172.67.69.130200 OK 31 kB URL HTTP/2 www.iviskin.no/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 172.67.69.130:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 30995
last-modified: Wed, 02 Nov 2022 10:24:35 GMT
cache-control: public, max-age=31536000
expires: Thu, 02 Nov 2023 10:24:40 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 821592420
age: 1936768
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8liWSj648Jan1E%2F6RFvYSKnL8VVE%2BaZi3%2BggvR5tHB3RUh9VTgz0hW7%2BIjV6aUUni2rLhr11OgUzCMG0AWpHmDFhgz0gzZFNE2NiNsuNnVgUCEKO6iCkX9I487dQWcPN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf5cf7b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome-child/style.css?ver=3.0
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome-child/style.css?ver=3.0
IP 172.67.69.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/flatsome-child/style.css?ver=3.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
content-length: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=197
access-control-allow-origin: *
age: 14744228
expires: Wed, 07 Jun 2023 04:47:00 GMT
last-modified: Wed, 27 Apr 2022 11:12:26 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/7.1)
x-varnish: 29723449
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gzvUM7EyXLALJvmrP5nLa3TOJURcJ8Wp7xlwKSmZF%2BQMYz4kBlvx5s%2BlKfSJo1azHkkcnkoRNH0Ppl03fs8ifIMcQBBl3KLzN4k1gXWvZLVMHqi4%2BHl85TzMc2XWxlrp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf5ce8b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1
172.67.69.130200 OK 693 B URL HTTP/2 www.iviskin.no/wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1
IP 172.67.69.130:0
File type ASCII text, with very long lines (1146), with CRLF line terminators
Hash dfb3e5103b47ebeefef0848c26e1e654
e30424e185652e3b657e984f3564a6e4ee362186
dcd2ba898b25397413a92e2c321dd0bbe22200d4cd92322d6ff8e7cc5881cc70
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.1.1 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 693
last-modified: Tue, 01 Nov 2022 18:24:53 GMT
cache-control: public, max-age=31536000
expires: Wed, 15 Nov 2023 22:37:03 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 992190362
age: 769625
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Blmy66x18VdP%2FF3vEyv9yXQQQ7uFQ2fViA2Mf68YplVjkRjgJTvYQ7pBDobLcBNZnBA9fUu3Rvz2lny8%2Ftc9G6GrkN%2FKwejcVENgvF6LfIBM4hpfNbPTP785P6RhwsvR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf6d1cb521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=2.10.0
172.67.69.130200 OK 5.4 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=2.10.0
IP 172.67.69.130:0
Hash 34760959e4362356fd8fc32678b8c1f4
8b16f5dd88b59c76c2c10f7d68468f4bb5e43c69
6d58a8c2a57633dedbf2d6c996e05d37de46103a0f68abec7eebf59d8989f1f2
GET /wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=2.10.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=10821
access-control-allow-origin: *
age: 318269
expires: Tue, 21 Nov 2023 03:59:39 GMT
last-modified: Mon, 21 Nov 2022 03:57:48 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 1065583132
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hus0rc0FQinWC84%2F%2FqLQoE9vYVcvDr285fejXhb%2BdzuWK43yJkuMo3Kx7EZykIX3hK1kG%2BxRmVsCJcdXxeRmr0M6%2FsEisvFEnHKHnB0p7Nhoox53c7cEqXKNS%2BlC26hr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf2c75b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/bambora-online-checkout/style/bambora-online-checkout-front.css?ver=6.1.1
172.67.69.130200 OK 5.4 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/bambora-online-checkout/style/bambora-online-checkout-front.css?ver=6.1.1
IP 172.67.69.130:0
File type Unicode text, UTF-8 text, with very long lines (16058), with CRLF line terminators
Hash e2e53f18be7bad731754a8c705be3a8a
b947fa55c8c92adae7de18774ee51b478a59faa0
055e16c4b91b8f26a161d04b5a247850a6126e5330743edf255aafb83e2ced00
GET /wp-content/plugins/bambora-online-checkout/style/bambora-online-checkout-front.css?ver=6.1.1 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=485
access-control-allow-origin: *
age: 769625
expires: Wed, 15 Nov 2023 22:37:03 GMT
last-modified: Tue, 08 Nov 2022 14:40:31 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 1035731139
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6tIKIlRTVlzYQKElkZIsj1OWYNbeUJC3PJ30TxZPDl8t1r%2F9YfBrwhIEFWyQZWb54Oe5t8uQwMALap2AF%2F2hiCU0L%2FiZ6xoljXow4bwkTpVUs0UQ4ISRP%2B0aP%2FAhVY3X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf2c70b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
lnk.thebigadsstore.com/ref/www.jbl.no/
52.202.106.26200 OK 16 kB URL HTTP/2 lnk.thebigadsstore.com/ref/www.jbl.no/
IP 52.202.106.26:0
Hash fb30f2d36826b5c54d4f33487e493176
57d3f0b7ea5ec511c78d01f39e7dbad8817cd75e
c9326ce2cd6345b8e6d392b8497030989449a45f447dc3b92eb3737c570cb489
POST /ref/www.jbl.no/ HTTP/1.1
Host: lnk.thebigadsstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 281
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:07 GMT
content-type: text/html;charset=UTF-8
referrer-policy: no-referrer-when-downgrade
content-language: en-US
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-hvit-1-1000x1000.jpg
172.67.69.130200 OK 28 kB URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-hvit-1-1000x1000.jpg
IP 172.67.69.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 1000x1000, components 3\012- data
Hash 6dcaa7b750b40eb9f84b2a72ae1a46e5
085f2a987b8783440c55e4a2b810aa911819a10d
d40d85b5e7f08df3f2ace4f359d63e6ccf30e99ce030029315fe86651d02ac2d
GET /wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-hvit-1-1000x1000.jpg HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/jpeg
content-length: 28200
cache-control: public, max-age=31536000
cf-bgj: h2pri
access-control-allow-origin: *
age: 3732128
expires: Thu, 12 Oct 2023 15:42:00 GMT
last-modified: Tue, 05 Jul 2022 16:35:58 GMT
vary: Accept-Encoding,Accept
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 847447572
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ggtxg0D1N6uB9dzPjpWNbWWDn0tDRu4Ftj78ZMcN7rzd0bWDTBabn%2Bfgt4OGJeqsir2zDxAsL1mvWtlDybkrBXGFZyWpk0J60kLjImOJIxO3VWWaV2EVrf6vp7OwEtbi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf8d79b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woo-vipps/css/vipps.css?ver=1669026271
172.67.69.130200 OK 7.1 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woo-vipps/css/vipps.css?ver=1669026271
IP 172.67.69.130:0
Hash 4ea3c85f3504c26e889cf9a4befb0f5b
af5a240313bdbe1ead8f2d017e2c5e9f7d583885
caa7de537a6600cf7b6b5a151cb56b4fe11c26e26f0e5d10d0220a52995818d1
GET /wp-content/plugins/woo-vipps/css/vipps.css?ver=1669026271 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=8190
access-control-allow-origin: *
age: 294768
expires: Tue, 21 Nov 2023 10:31:20 GMT
last-modified: Mon, 21 Nov 2022 10:24:31 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 152177632
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a122YJCjrlUYjXiPQwoSWiFbtx7tOdm9YtvY0iv1sPXvaOGFPPUc9l48aHeAoN5c5pSzgl%2Fqnj3T8sov%2BYkv3mj%2FtTvZuyjjAcPHPlCfgcasYozkkVVEcGsi8iErK2SA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf2c8db521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/uploads/2022/02/Iviskin-G3-IPL-Harfjerner-Hvit-farge-1000x1000.jpg
172.67.69.130200 OK 29 kB URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/02/Iviskin-G3-IPL-Harfjerner-Hvit-farge-1000x1000.jpg
IP 172.67.69.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 1000x1000, components 3\012- data
Hash 18b68d465416a94f060974985d4a053d
637c10849ab1d4e7adff5abd9b7b62f9cf57a6f0
6122eaa6accf3094c22ee0a49651938e4a245d13eb9cd326b5bc95e6bae6ff5d
GET /wp-content/uploads/2022/02/Iviskin-G3-IPL-Harfjerner-Hvit-farge-1000x1000.jpg HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/jpeg
content-length: 28809
cache-control: public, max-age=31536000
cf-bgj: h2pri
access-control-allow-origin: *
age: 3732022
expires: Thu, 12 Oct 2023 15:43:46 GMT
last-modified: Tue, 05 Jul 2022 16:47:31 GMT
vary: Accept-Encoding,Accept
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 846006858
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vmc3UIU3K7YQEb28MTDiNlI3XXeIJAhXKWzlwyzx5ESJDB9gHZzcqBYQxPhLG7FlV9dnC%2FDBDs%2FY4jtX65%2FpwzBJdAQl8kJVRFOGd%2FwY88VtWS2ifikOcXhA455MfUUt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf9d8ab521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G4-IPL-Harfjerner-1-1000x1000.jpg
172.67.69.130200 OK 29 kB URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G4-IPL-Harfjerner-1-1000x1000.jpg
IP 172.67.69.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 1000x1000, components 3\012- data
Hash 421af0cc7d34f8a11a808cbd9d82103f
f0341548455ab3e0f2352f6be9041670af2a6336
c348751f31535333cb715692c72ba63fda6dcf3e53a6fcd5ba9819083835629a
GET /wp-content/uploads/2022/02/IVISKIN-G4-IPL-Harfjerner-1-1000x1000.jpg HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/jpeg
content-length: 29123
cache-control: public, max-age=31536000
cf-bgj: h2pri
access-control-allow-origin: *
age: 3732075
expires: Thu, 12 Oct 2023 15:42:53 GMT
last-modified: Tue, 05 Jul 2022 15:21:12 GMT
vary: Accept-Encoding,Accept
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 842992942
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UUQWS8MSUzybqR8d5FAAe%2Bmhk5QkiTthtAwYIHNJQi22L4VnwMzng%2F98jdT0qdldfPUUC9jYZptyNxEc3ABxglVEi8Y8Fh05M4pBAQ0g9PRwVw%2FE4QWcOSqMMolx9vhX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf9d91b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-profil-2-618x400.jpg
172.67.69.130200 OK 15 kB URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-profil-2-618x400.jpg
IP 172.67.69.130:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 618x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d20662011613053b080a573bd0bf3cec
25daf801e4a168697fb55e885d8a689b4df32e32
22df99c0be1424b45f79993bedb6e763fcf4227c9b31c28bd35ea97b3170502f
GET /wp-content/uploads/2022/02/IVISKIN-G2-IPL-Harfjerner-profil-2-618x400.jpg HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/webp
content-length: 15292
vary: Accept,Accept-Encoding
last-modified: Tue, 26 Apr 2022 17:48:53 GMT
cache-control: max-age=31536000
expires: Fri, 10 Mar 2023 22:10:36 GMT
x-varnish: 924190000
age: 1203212
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shOphNGg97srefDS0oK%2BtnwiMmfBUJ%2B9ZTgIrjrz79gyzkoHvFgSk3UmlLAut7Jr%2BEUUBkLaDC%2FeZ0XxEblP4FsMne3POq2xDhwuKOWR9zpItAScCh%2BHAI0YDXH0Ol11"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf9d8fb521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woo-product-variation-swatches/assets/css/rtwpvs.min.css?ver=1669321448
172.67.69.130200 OK 1.7 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woo-product-variation-swatches/assets/css/rtwpvs.min.css?ver=1669321448
IP 172.67.69.130:0
File type Unicode text, UTF-8 text, with very long lines (9478)
Hash 304738a1d8134cb7c35ce93ce0c14aa0
7a1a03eb12018760595c56f55a7422804fe2d544
28e1fa3fba7d9e31e305953c98f8b186d46476dcf5307563413868d1d363ad09
GET /wp-content/plugins/woo-product-variation-swatches/assets/css/rtwpvs.min.css?ver=1669321448 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
content-length: 1657
last-modified: Mon, 21 Nov 2022 10:24:35 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 20:24:08 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 14784341
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8SSVAG%2BSSCk%2BthWCyR0x2I5UAPymU4e40kA4QJk%2BxKfc64O1ZKarXoLE%2Bwjw%2FR3YqnWr%2BKr%2FO37rO3cg0lWaQgBuzQy95W2yzxYJZwHrFB3kLh46ONtltpV21nUoVZpg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf3cb5b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.2
172.67.69.130200 OK 45 kB URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.2
IP 172.67.69.130:0
Hash e78c614dd81063b12723de368d9e67c9
0bed78f109b3e95b12c5867635150b360142aa7f
3f3a04cd22c96b4fc093d73f85eee33a9fc01fd8dd23b0d6a574cbfd4e7a3961
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1407626
expires: Wed, 08 Nov 2023 13:23:42 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 17862828
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yz2TdG4kbQCx7nfrGH43iLSSYk%2Fj%2BKg0hM4kPZ7A0P6ZmycslKWf16RiMRxu6iOVlHWoC08QgJ9%2FfzZNye5qKzZqhZsGOnB8RvEO0EHNL6b92WEzgrmfKXUgarnpH4OD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf4cc8b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/uploads/2022/01/IVISKIN-black-01.png
172.67.69.130200 OK 98 kB URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/01/IVISKIN-black-01.png
IP 172.67.69.130:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3b8e424e797bd7461a0d3834a79c8e89
c8d96f5658434e53efb96f06b234f4159f96e6b1
f270e70cd8d2a3d0b7305ccdf35e0bff71286a496db58a813e92d2aad6cb37f8
GET /wp-content/uploads/2022/01/IVISKIN-black-01.png HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/webp
content-length: 97906
vary: Accept,Accept-Encoding
last-modified: Tue, 26 Apr 2022 21:16:16 GMT
cache-control: max-age=31536000
expires: Sat, 23 Sep 2023 06:43:55 GMT
x-varnish: 491816755
age: 5406013
via: 1.1 varnish (Varnish/7.1)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KhBSfh7EeTwHLDiTECqglKSt0q9Ikf4S73qejl8aZSGfvehYx3%2F8N03Uk%2Bfogc6h3vsOJ78kbanxRIeNh8ePT10BfBm48rZ6czvPPnHqfwIqQ8SloUgU4CobHLkGs6GT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfadb0b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/fonts/open-sans/style.css?ver=2.10.0
172.67.69.130200 OK 20 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/fonts/open-sans/style.css?ver=2.10.0
IP 172.67.69.130:0
Hash bce84457ea0cf6746f9adb52b9200936
c3a9e97a070b7dde716e6a315f178549e30157cf
e2a2149de1ff0c21b8024bf3150293b9a69a900f247b3aeaf08df06176707a0a
GET /wp-content/plugins/yith-woocommerce-badge-management-premium/assets/fonts/open-sans/style.css?ver=2.10.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=3057
access-control-allow-origin: *
age: 318269
expires: Tue, 21 Nov 2023 03:59:39 GMT
last-modified: Mon, 21 Nov 2022 03:57:48 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 1052280694
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Db2Ea2iEcwuAG%2FfQBow7vOpp7ViSrLSEzoQSUIe67YMfyEgTO8cXdBNxttTfNtcGU5w2M4xXfWvfPHLVFCeOUEC7VO70Lkr9pmZ401VSyyRbGy1yM%2Bw3mZTj6o1BOS0Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf2c83b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
172.67.69.130200 OK 1.1 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 172.67.69.130:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 3fffd1b8f00bf4175aaf1831974a4e4c
7f16ab9253c92a528f1f8cb20bee07128ce67048
3eeb166e786db324c70ef63628846f825951748a76d0de97c719189a0ab555c3
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1088
last-modified: Tue, 08 Nov 2022 22:25:08 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 308805814
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6mrrbOLwmoN5WFfRdkt1f0Jb3X6KDRnZyDbYmD0M%2BSrQbq%2FQwWUqj6QF%2BqMc2JQ%2FUL7bCHPkLM0beSbAaXmFmLQZ6hg7vGMgtZBpK2fOnfA7l4drkdJUmHSEp0ZlS%2Bhd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfbe0cb521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
172.67.69.130200 OK 2.4 kB URL HTTP/2 www.iviskin.no/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 172.67.69.130:0
File type ASCII text, with very long lines (6494), with no line terminators
Hash c16f2821df385b57b616cb7c867e1253
6327ed04bc2d7c294db8358cdf8b06ff62c3eb13
ff1c71b966df6e007b9175772a52be12d7dd9b65aafcb78a55046f60e792ae42
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2422
last-modified: Thu, 27 Jan 2022 15:10:09 GMT
cache-control: public, max-age=31536000
expires: Fri, 28 Apr 2023 08:34:11 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 863568473 321454806
age: 18113991
via: 1.1 varnish (Varnish/7.1)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=76esDpjrt1txl5uNz3g2PfJhndgR0KU1ciYR396AVI%2BjeNf3Hx3oPkKPhU6SfzMx%2BcUss7QZgdc3ETJ00nysb%2BJWVp25KgBx64efTINfpsF5%2BDvyn5w1n2jZPVEsrHuv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfce28b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
172.67.69.130200 OK 3.5 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 172.67.69.130:0
File type ASCII text, with very long lines (9111)
Hash f6004c12128ba678a6ab8fafb9cb1d61
a023d537a3273176524815baca3f2c42cc601a3c
e516f66f227db9eb26f5bec7605f4647680979c10c9bb61ac1654ccbf7e348af
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 3496
last-modified: Tue, 08 Nov 2022 22:25:09 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 290655523
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fb%2BscQGzzJKRgNiYQsDOLalN5xyG4HPST6RGygbLg5mgpDhda0Aa6syCNBkGzaajXDbtOnuvqBrAOFUT5LFayMYhGJPL0oFxTYoatv%2FM9GVl81tECHk6%2BvtW3vKtgxRO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfbdf8b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/pixelyoursite-bing/dist/scripts/public.js?ver=3.0.0
172.67.69.130200 OK 8.4 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/pixelyoursite-bing/dist/scripts/public.js?ver=3.0.0
IP 172.67.69.130:0
File type Unicode text, UTF-8 text, with very long lines (19579)
Hash 09257176d3368d7dce83f097f355fb2a
882d7ba333dd1d8a0dc4b727f33b5ed574e2ebaf
d86c3d2dbbc284bf4f13c65b5d57fc6647f0d5b670854b51d274172e188c528e
GET /wp-content/plugins/pixelyoursite-bing/dist/scripts/public.js?ver=3.0.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=8084
access-control-allow-origin: *
age: 11826334
expires: Mon, 10 Jul 2023 23:18:34 GMT
last-modified: Sun, 10 Jul 2022 22:40:20 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/7.1)
x-varnish: 186318896
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YaVSoijhRgLR2cvQeNMwac3PEAC9K1pZu5GThwQp4tdegnVDctmlvTzTfzELvze4ZGZEUuHqXueourGD0OJsTamdP6rdJtHahqbXvOBbLQgymaeMSzh0R2bqCDiLkw6S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf6d28b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
172.67.69.130200 OK 794 B URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 172.67.69.130:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 794
last-modified: Tue, 08 Nov 2022 22:25:09 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 294062410
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HVmNLm9Spvh3gAt8cmyL6V6O5C6ZMtUjCLNtOf7CD%2FkLHoc3DqIp4PIePnXOg7ynfsIrfyoTOBmnUr2IM4AXYtxdwvAF8%2Bx5HpV1o6Tshi7Uzxs1G9%2Bt00op8NIrXd10"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfbe12b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/hoverIntent.min.js?ver=1.10.2
172.67.69.130200 OK 705 B URL HTTP/2 www.iviskin.no/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 172.67.69.130:0
File type ASCII text, with very long lines (1465)
Hash 19bbc441740a1a6f3a64155bdfc3dba5
55a4beb22cd76a1d66c4a6947968408f337b4890
ed5fdb40d566079267ca224b2d9bbe7235a66ce393c083c28c64be9c24a0dfda
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 705
last-modified: Thu, 27 Jan 2022 15:10:10 GMT
cache-control: public, max-age=31536000
expires: Fri, 28 Apr 2023 04:12:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 730890912 218498488
age: 18125413
via: 1.1 varnish (Varnish/7.1)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQdCPi6zneQhTwMwBhRvdjdy%2FuMKZnoxrgam7OUoFrE8D3qdmnmKPln4VmddQlkKSYwFYJFHTlqerCMoAhElbyrwTilLAdct02y8ky4navS1XSeUDoSwc8sd4zMVagAa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfde54b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
172.67.69.130200 OK 1.0 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 172.67.69.130:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 1039
last-modified: Tue, 08 Nov 2022 22:25:08 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 291508487
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FShH%2FeaTfyu7pw6SA84X9mxkvPKhEpUZpjYS2SJNitSmvSFu%2FjD%2B9beXXoc2DKHNVcHdpcQI2PXN1Z2T7yu%2BNVzJuyyGzP6kwCZZ5QLX1JzlIX5aOJTOoW5dBE8Nn3K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfbe17b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/wp-util.min.js?ver=6.1.1
172.67.69.130200 OK 756 B URL HTTP/2 www.iviskin.no/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 172.67.69.130:0
File type ASCII text, with very long lines (1391)
Hash 838aa5f64f258023c2f4ced3125cc12e
0f9ba4eee7038506d01a6e741b16324ffb347fda
8212000a2ae7888dec134e6a079a16c19d71f6bcd0924384abb16027325ed218
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 756
last-modified: Wed, 02 Nov 2022 10:24:35 GMT
cache-control: public, max-age=31536000
expires: Wed, 15 Nov 2023 22:37:03 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 1012566677
age: 769625
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G28G3rdvE4O2c4PieS9ro5yYtgc%2F0rX0BI54379KkafeCVFg6zwEy9cXIR8xqbHk90%2FWl%2Bn%2FQZDCXJy6CJUSuvuF95M8d1dKTE6cvPHUGyW%2FO7xSVJK4iISW%2FNslTGmQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee8eb521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-includes/js/underscore.min.js?ver=1.13.4
172.67.69.130200 OK 7.3 kB URL HTTP/2 www.iviskin.no/wp-includes/js/underscore.min.js?ver=1.13.4
IP 172.67.69.130:0
File type ASCII text, with very long lines (18798)
Hash 3f92fc0fb188799b432341421df6cfde
09041f63af89e1164a53dec66eb7b2ac1dc58ba6
6b09e750d7ecaac14315f7c7e09b6de17f8d1f790b4acdc094b74832402aee31
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 7311
last-modified: Wed, 02 Nov 2022 10:24:35 GMT
cache-control: public, max-age=31536000
expires: Thu, 02 Nov 2023 10:24:40 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 790861504
age: 1936768
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LvXCEZzCIjR1qKz9bJkwfRi0R5c7xZ7cc4L7A4kusaYRUTfXSxfBQSaDx8LjYnChJ7CNzio19VqFf0GMhG%2FLDSisQVrhBzKdUkgYgNp1oKBCQePFajyN%2BdhQTTcQbnS3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee8cb521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d9b1b99c8e531cef48c523da97207cd5
42ad92cfcad2d6767daf017bd05b6d6365b03547
29825f4d696be49e5768238c51a3c1c1090cba42604d47ce74ade7586d166cb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4079
Cache-Control: max-age=91955
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:08 GMT
Etag: "637e872c-117"
Expires: Fri, 25 Nov 2022 21:56:43 GMT
Last-Modified: Wed, 23 Nov 2022 20:48:44 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0
172.67.69.130200 OK 3.6 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0
IP 172.67.69.130:0
File type ASCII text, with very long lines (13880), with no line terminators
Hash 7bd9ac0901226327e38d4ba6f9184327
d570c9be7f18ef2819614243c21151c19a0c6ceb
7418b1b9031fc621c84efcccc3606814b2c4f0070a736dbb8d3cb6096aae37db
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 3648
last-modified: Tue, 08 Nov 2022 22:25:08 GMT
cache-control: public, max-age=31536000
expires: Wed, 08 Nov 2023 22:25:36 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 306119344
age: 1375112
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qTlKq2Kbc9O%2Fquk3tKLIgnAfCAff0BQR3Eu2Dm9Nyu95cxZDb3GmSWhrbz4D8fgnTIDsGNC010LE0cXRld5coaoSR16yJmOEN%2F64MgBeNysK%2F0VsLbF4upqnAwe6En8%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee91b521-OSL
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woo-product-variation-swatches/assets/js/rtwpvs.min.js?ver=1669321448
172.67.69.130200 OK 3.6 kB URL HTTP/2 www.iviskin.no/wp-content/plugins/woo-product-variation-swatches/assets/js/rtwpvs.min.js?ver=1669321448
IP 172.67.69.130:0
File type ASCII text, with very long lines (16273), with CRLF line terminators
Hash 8acc4b49f5575bfb00946c96514f0299
a22e7d38570bb1f346571c94ee197e1799a7e29a
cdb72c3a39975686294870c790c954863d5c1deb589b045d398d4bf9a7e6ca7d
GET /wp-content/plugins/woo-product-variation-swatches/assets/js/rtwpvs.min.js?ver=1669321448 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: application/javascript; charset=utf-8
content-length: 3643
last-modified: Mon, 21 Nov 2022 10:24:35 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 20:24:08 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-varnish: 11345078
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fBfp8FiD3M%2BmOll09uovY5Zg6wRcbaOcqt2INaB5u3r%2B%2FkY3u9WIJEdYDg3jVN222fLcRfOurjpDw466R1ec7GdXzoa33pPzNwaH1efvUKZl%2FRBovFwlbdyizpCBomFb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee8fb521-OSL
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=XKZXBR
151.101.86.133200 OK 923 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=XKZXBR
IP 151.101.86.133:0
File type ASCII text, with very long lines (2028)
Hash ccfd9cda32f7ade082dcce8aae986f26
fba3d11aa2845bcc68e3a30737d3ca31963e1b5a
398f283532cfc7ea7c77e9d8a6c6923f6433602be36c23314e0fac5da755ace0
GET /onsite/js/klaviyo.js?company_id=XKZXBR HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"025a512fc66912eaf18e195fbc982fe4"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:24:09 GMT
age: 84072
x-served-by: cache-lga21957-LGA, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1669321449.037569,VS0,VE1
vary: Accept-Encoding
content-length: 923
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 12 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 6d231d01533de87f1978527ff1582e85
2681a231f71539018d1e7ef81b21035159e70067
dd8eda4130a189c4da20100752803ccb737e26f5c93f97f8db822f29f545be19
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11968
server: CloudFront
date: Thu, 24 Nov 2022 20:24:09 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 25 Nov 2022 18:23:01 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wKVffIB23kQUTOB2KGEIEOHkEWzbGD6nO-zf3magzZUvHHlxZbBnfQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d9b1b99c8e531cef48c523da97207cd5
42ad92cfcad2d6767daf017bd05b6d6365b03547
29825f4d696be49e5768238c51a3c1c1090cba42604d47ce74ade7586d166cb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4080
Cache-Control: max-age=91955
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:09 GMT
Etag: "637e872c-117"
Expires: Fri, 25 Nov 2022 21:56:44 GMT
Last-Modified: Wed, 23 Nov 2022 20:48:44 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
static.klaviyo.com/onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1
151.101.86.133200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (19473), with no line terminators
Hash 39e64f56954c42b43cc384cf1e0c3731
bbdf03fbc36e64426dc43bfd1f27d60489d6cddc
a34478f63b3b1bf8961e77fb9f38a154379574973a945fa6690aa1e2162c5fb0
GET /onsite/js/runtime.a8ef631c8b8460d3e957.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LcnloDViSGmngOe1XAQL7J26gE18h4WQdO0khCUtmwOPKeUBg7GZShE/rJMNj97D2SkJ4KVlae8=
x-amz-request-id: GZRPWVEJJ044SSAH
last-modified: Fri, 18 Nov 2022 15:32:15 GMT
etag: "79c90fd1d1397b500594e00805a2ea59"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: R6MP9_b0BhtLI5ZwP6FFsPjCkadN.MZX
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:24:09 GMT
age: 84078
x-served-by: cache-lga21968-LGA, cache-bma1639-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 57067
vary: Accept-Encoding
content-length: 8052
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1
151.101.86.133200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1
IP 151.101.86.133:0
File type Unicode text, UTF-8 text, with very long lines (35750), with no line terminators
Hash 1896346c72197b43859e4bfb57e2d85d
93873b55c021a9ef1ad9ef23438ecd45ce966c4e
f9feb00888ace100ce22f082c9817d1023692a04cc07e6b91e6fac6cf15b8d92
GET /onsite/js/sharedUtils.b9e0df35334cc1e651b6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UjdIdiHtl2D/aiNrgKDEOoJSfB0lTAHDB1dnDJUv3a454ad/xltT5fkAtEvJZtVBdM8AH0pvqUA=
x-amz-request-id: YQX2RCWFWYNCFA5N
last-modified: Fri, 11 Nov 2022 00:12:58 GMT
etag: "10241c59a86c7928f90d45a55b13bc7c"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: O4eT1_jDn59DvpPe9ex9946DLSV9H08f
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:24:09 GMT
age: 84079
x-served-by: cache-lga21973-LGA, cache-bma1639-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 49647
vary: Accept-Encoding
content-length: 13847
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff
172.67.69.130200 OK 45 kB URL HTTP/2 www.iviskin.no/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff
IP 172.67.69.130:0
File type Web Open Font Format, TrueType, length 17628, version 1.1\012- data
Hash e45f24bb5a78ab89c05d342f61b66d40
6fb4174590dd705b815a4d0218f7cdf2e5b70c43
3361778c62310db9aad43b305e6ce88faf2cfd33d2fdb231c6f694d9bb12d883
GET /wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPHw3q5d0.woff HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: application/font-woff
last-modified: Tue, 08 Nov 2022 13:09:52 GMT
cache-control: max-age=31536000
expires: Thu, 08 Dec 2022 13:19:11 GMT
vary: Accept-Encoding
access-control-allow-origin: *
x-varnish: 24582123 49711915
age: 1406491
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zd3Fwru%2B8jw31W2STRx9S7JZBfFTjydyFgOfVA1uOsCiXUbHX3XwwuiTf1K%2FsjeEjsUD6V5j%2FpN%2B6fHhySFR%2FHhGU%2FdTXbR60loOTcQ7oG8IFUSM4AA77gRrbg4vU6zK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddd0e8bcb521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3191
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:09 GMT
Last-Modified: Thu, 24 Nov 2022 19:30:58 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.iviskin.no/wp-content/uploads/2022/11/Iviskin-Black-Week-2022-1377x800.jpg
172.67.69.130200 OK 471 B URL HTTP/2 www.iviskin.no/wp-content/uploads/2022/11/Iviskin-Black-Week-2022-1377x800.jpg
IP 172.67.69.130:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
GET /wp-content/uploads/2022/11/Iviskin-Black-Week-2022-1377x800.jpg HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: image/webp
content-length: 61456
vary: Accept,Accept-Encoding
last-modified: Mon, 21 Nov 2022 02:26:34 GMT
cache-control: max-age=31536000
expires: Tue, 21 Mar 2023 04:11:59 GMT
x-varnish: 1050938241
age: 317529
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SrmDAKLzQnrZQ3V1qqfEIfb6NMhCpOw0BqkotQFO4fz2Y3N5YZNvAouF%2B5%2B363lfIi9ib4fdFy5x2t9mce%2BQ%2FvyD6F1njeTw6SD8v5f4kGDMyfspyvOPcndPw60VG9%2Fj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf9d95b521-OSL
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1
151.101.86.133200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.42a910303762129b987c.js?cb=1
IP 151.101.86.133:0
File type ASCII text, with very long lines (27749), with no line terminators
Hash 0cfada57d478d97560b453019c523816
4503f32aa052c4ab0be24d9e3d383ce0ca568b0b
9a6fb085ebc0985e24aad977f126412a763fb7920f819e592e9baa1ff6362708
GET /onsite/js/fender_analytics.42a910303762129b987c.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TVj4JadKocCV4h3NElq7oufjh6VUPmKs/RmMK3GsmHVEIEljMrEcW06e1Di1LhQKmT1Dja0y3h4=
x-amz-request-id: GVJMDN3QM916A9S6
last-modified: Tue, 25 Oct 2022 15:47:53 GMT
etag: "141ae207735ed4c2a3fb9ba628dca228"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 3uoP2mttpPOUARdp4efml6Pc5m5_bVca
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:24:09 GMT
age: 84079
x-served-by: cache-lga21944-LGA, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 47317
vary: Accept-Encoding
content-length: 10696
X-Firefox-Spdy: h2
tr.snapchat.com/cm/i?pid=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&u_scsid=1f36233f-18a8-4ce4-ac0a-805cd9a41084&u_sclid=ddb93df8-06d9-4281-bb0a-3663e2e3dee8
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&u_scsid=1f36233f-18a8-4ce4-ac0a-805cd9a41084&u_sclid=ddb93df8-06d9-4281-bb0a-3663e2e3dee8
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&u_scsid=1f36233f-18a8-4ce4-ac0a-805cd9a41084&u_sclid=ddb93df8-06d9-4281-bb0a-3663e2e3dee8 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-140793423-3
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-140793423-3
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 3e49d35c7fea5e8bfb7112c7d91f73df
5027b669d280c96da1415024a95e30963231a95b
68a1604d51a4bdfe1511a3ece85fe72e029406e30949d75b8c70fe998853743c
GET /gtag/js?id=UA-140793423-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 20:24:09 GMT
expires: Thu, 24 Nov 2022 20:24:09 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43679
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3191
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:09 GMT
Last-Modified: Thu, 24 Nov 2022 19:30:58 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 453
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
access-control-allow-origin: https://www.iviskin.no
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItIQAZx7yhyBcfblnXjKiR2pYC2hQTlEEedLzxrxjLpywCOftmfSaoyAAAA;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2af85571e3d0eb2462e6f9603558af86
5ce824cb6b9025a899bbd1a331e1473e45a8bcb1
b07290bfc989d891aec3c082ce3f5ac92a403e51bdfb7dcc386d2680c36014d3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145330
Date: Thu, 24 Nov 2022 20:24:09 GMT
Etag: "637f5e75-1d7"
Expires: Sat, 26 Nov 2022 12:46:19 GMT
Last-Modified: Thu, 24 Nov 2022 12:07:17 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2aTeVMQw8JBzoQBwUmi6Wex8NuAfsiGrVZ-nVvE-jdkcHegxWoinsQ==
Age: 2342
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C8RAVQTH2V1MUSDNNNJG&hostname=www.iviskin.no
23.36.79.32200 OK 339 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C8RAVQTH2V1MUSDNNNJG&hostname=www.iviskin.no
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash 46e30aa8bd7aaf205b201db5e887f84d
2e8732fb361f963aad0a56770087dd2bc162c9e0
4e239df979e11728a48d16ee9106f10380561ce275a75a12fa39e2a697ccefed
GET /i18n/pixel/config.js?sdkid=C8RAVQTH2V1MUSDNNNJG&hostname=www.iviskin.no HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211242024095DC2F2595CBA6DBB2F3A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b5e9e3ecd8bfb8ce4cbca76b43126e3714ecfd4316b6f46dfa53dcbfa5225e3c5bef2139c2f0b3fc3bfdcf2324c72394d
content-encoding: gzip
expires: Thu, 24 Nov 2022 20:24:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 20:24:09 GMT
content-length: 339
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I0bSkY8zYBtbEcFARIE14uNHjX; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=2, origin; dur=102
x-origin-response-time: 103,23.36.79.28
x-akamai-request-id: 513b6d4c
X-Firefox-Spdy: h2
www.iviskin.no/?wc-ajax=get_refreshed_fragments
172.67.69.130200 OK 329 B URL HTTP/2 www.iviskin.no/?wc-ajax=get_refreshed_fragments
IP 172.67.69.130:0
File type JSON data\012- , ASCII text, with very long lines (620), with no line terminators
Hash 96e3bcc07b5580370a5d462916f7856c
e3935040ff460c9bd478fa8ec9960d6beba849ce
89f03dc7582c2843fa2529d9587010d20bda5e1d69e68172b27d82a1c64b17ce
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: application/json; charset=UTF-8
content-length: 329
x-powered-by: PHP/8.0.26
cache-control: max-age=0
expires: Thu, 24 Nov 2022 20:24:09 GMT
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 25924155
age: 0
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DfGytQDTY32GyXIXAYQw3jDxKn2kgnr0cYEHyjBbJ%2FSv9UtQmTbhBUOw87n5qxSDSNYO%2FdhnZpFDZysbuJs%2BLFSQ0YBTOXPnhgO5odKT8C6%2B2%2BSrt4PUIN%2FxpvZF1N98"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddd24ba5b521-OSL
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 848
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Cookie: _ttp=2I0bSkY8zYBtbEcFARIE14uNHjX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221124202409ACE0A708963CCA7BAFDC
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465be920e5e1b6781b24b523183f17558ce3eda5bd9cc4df54fa650091b630b1f305a03f7a74e4825bdb292088d6b4ddb411
expires: Thu, 24 Nov 2022 20:24:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 20:24:09 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=6, origin; dur=125
x-origin-response-time: 125,23.36.79.28
x-akamai-request-id: 513b6e4e
X-Firefox-Spdy: h2
www.iviskin.no/wp-admin/admin-ajax.php
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-admin/admin-ajax.php
IP 172.67.69.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Cache-Control: no-cache
X-Requested-With: XMLHttpRequest
Content-Length: 581
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.0.26
access-control-allow-origin: https://www.iviskin.no
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
x-varnish: 52068508
age: 0
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4HOG58IVKKm8CkPXjT03hptKLkNxjGKNt263a4XCWpkOa1H1HCZ9s1myh1ksyndmG0JATe%2F1JDL02uxycdI8YI03yQ8GnqpAYrCJK%2FzJ%2BKCA9jP6KTKRLL0ECQUrkcRp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddd2fd15b521-OSL
X-Firefox-Spdy: h2
widget.getblue.io/event/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=e%3Dvp&p3=e%3Ddis&adce=1&dtycbr=87954&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&if=1&nocache=9953438682038.27
54.233.101.35200 OK 0 B URL HTTP/2 widget.getblue.io/event/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=e%3Dvp&p3=e%3Ddis&adce=1&dtycbr=87954&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&if=1&nocache=9953438682038.27
IP 54.233.101.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=e%3Dvp&p3=e%3Ddis&adce=1&dtycbr=87954&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&if=1&nocache=9953438682038.27 HTTP/1.1
Host: widget.getblue.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: text/html;charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
event.getblue.io/p/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=&p3=&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&nocache=9023018726330.39
54.233.101.35200 OK 0 B URL HTTP/2 event.getblue.io/p/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=&p3=&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&nocache=9023018726330.39
IP 54.233.101.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?cId=5347D6B3-C8E9-4A0D-D299B5B86060C62D&tName=visit&pId=&revenue=&orderId=&p1=&p2=&p3=&fp=&blueID=5e0a289d-cce9-42d4-9ba6-f1a1a5077717&v=13072020-1328&nocache=9023018726330.39 HTTP/1.1
Host: event.getblue.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: text/html;charset=UTF-8
content-length: 0
tagcontainer-version: 1184-21082022-1526
cache-control: no-cache
set-cookie: ckid=691F6A8A-32E2-44D6-A7D4DBE06F836A8E; expires=Fri, 24 Nov 2023 20:24:09 -0000; domain=.getblue.io; path=/; secure; samesite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1636
Cache-Control: max-age=119377
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:33:47 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/310840387/?random=1669321449236&cv=11&fst=1669321449236&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/310840387/?random=1669321449236&cv=11&fst=1669321449236&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2395), with no line terminators
Hash 9e7b40aa93371265720b68a148b4f276
a0a4c933525f2f0474cffbeac2cdfb2bb29cd69f
7368046a1903f45849432bd9e6679505fba489cc657bcdf60879304941c32cc4
GET /pagead/viewthroughconversion/310840387/?random=1669321449236&cv=11&fst=1669321449236&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:24:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1038
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 20:39:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/www-widgetapi.vflset/www-widgetapi.js
142.250.74.174200 OK 54 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (817)
Hash 29427ecf21304acecbbdf40f5400645d
d1ad2abfce599431b1a01e8aa0170f8535677cf7
bbb57b235a677b493d1129a3e765c9765995a12fbc2a81fbc0ebbbe81fe647af
GET /s/player/4eb6b35d/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 54014
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 17:39:29 GMT
expires: Fri, 24 Nov 2023 17:39:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 9881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
event.getblue.io/js/blue-tag.min.js
54.233.101.35200 OK 2.8 kB URL HTTP/2 event.getblue.io/js/blue-tag.min.js
IP 54.233.101.35:0
Hash fc75f101c99bd09aa77dc40f821440e6
d5225d1c77d9f61ddd254f25e995041a4d88b34c
2736bc4622e099058f5c770bc20fe186e99e095cc1e1a308dd7eae522da088ba
GET /js/blue-tag.min.js HTTP/1.1
Host: event.getblue.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: application/javascript
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: bytes
etag: W/"7716-1669308079243"
last-modified: Thu, 24 Nov 2022 16:41:19 GMT
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: juiCK9PWskPLNlvPKXAF9tDYxoI0m/jUvd3cec27PCDvFku2NO3LzxUpsnYGqSX59L9yUZ4Bonyo3prcVnpHNg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 20:24:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1636
Cache-Control: max-age=119377
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:33:47 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:24:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&tld=no
35.190.43.134200 OK 99 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&tld=no
IP 35.190.43.134:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b7cfc9e53ea09ca0530372eae048d6c3
61b4e9a12bdf7a0c8508f5c2560cdfbbf4d1ec35
d6b9f76afd80f2a5bbc8440c93fa6575d1b135017563e4522b482c08e472b378
GET /collector/is_enabled?pids=ab0a4f7c-9e09-4567-a5c2-cf0fe44b02ae&tld=no HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
access-control-allow-origin: https://www.iviskin.no
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/310840387/?random=1669321449236&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&ref=https%3A%2F%2Flnk.thebigadsstore.com%2F&tiba=IVISKIN%20-%20IPL%20H%C3%A5rfjerning%20-%20K%C3%A5ret%20til%20best%20i%20test%202022%20-%20100%25%20forn%C3%B8ydgaranti&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=847165104&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:24:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/137008455.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/137008455.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/137008455.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=0ECE334BEF0465EF39FA212DEEF16494; domain=.bing.com; expires=Tue, 19-Dec-2023 20:24:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 96C90C6D5A2E40E4BE705AF239C1B7F9 Ref B: OSL30EDGE0215 Ref C: 2022-11-24T20:24:10Z
date: Thu, 24 Nov 2022 20:24:09 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=3061812804040142&ev=PageView&dl=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&rl=https%3A%2F%2Flnk.thebigadsstore.com%2F&if=true&ts=1669321450072&cd[page_title]=Black%20Week%20Iviskin&cd[post_type]=page&cd[post_id]=5807&cd[plugin]=PixelYourSite&cd[event_url]=www.iviskin.no%2F&cd[user_role]=guest&cd[event_time]=20-21&cd[event_day]=Thursday&cd[event_month]=November&sw=1280&sh=1024&v=2.9.89&r=stable&a=dvpixelyoursite&ec=0&o=30&it=1669321449846&coo=false&eid=3061812804040142LOsHRwvkBBDQ3f9ogFjSc2JgU65pSfYudJzO&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=3061812804040142&ev=PageView&dl=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&rl=https%3A%2F%2Flnk.thebigadsstore.com%2F&if=true&ts=1669321450072&cd[page_title]=Black%20Week%20Iviskin&cd[post_type]=page&cd[post_id]=5807&cd[plugin]=PixelYourSite&cd[event_url]=www.iviskin.no%2F&cd[user_role]=guest&cd[event_time]=20-21&cd[event_day]=Thursday&cd[event_month]=November&sw=1280&sh=1024&v=2.9.89&r=stable&a=dvpixelyoursite&ec=0&o=30&it=1669321449846&coo=false&eid=3061812804040142LOsHRwvkBBDQ3f9ogFjSc2JgU65pSfYudJzO&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=3061812804040142&ev=PageView&dl=https%3A%2F%2Fwww.iviskin.no%2F%3Fpa-partnerid%3D44549%26pacid%3D637fd2e7c70719.33439561%26utm_source%3Dpartnerads%26utm_medium%3Daffiliate%26utm_campaign%3D44549&rl=https%3A%2F%2Flnk.thebigadsstore.com%2F&if=true&ts=1669321450072&cd[page_title]=Black%20Week%20Iviskin&cd[post_type]=page&cd[post_id]=5807&cd[plugin]=PixelYourSite&cd[event_url]=www.iviskin.no%2F&cd[user_role]=guest&cd[event_time]=20-21&cd[event_day]=Thursday&cd[event_month]=November&sw=1280&sh=1024&v=2.9.89&r=stable&a=dvpixelyoursite&ec=0&o=30&it=1669321449846&coo=false&eid=3061812804040142LOsHRwvkBBDQ3f9ogFjSc2JgU65pSfYudJzO&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 20:24:10 GMT
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2
172.67.69.130200 OK 1.9 kB URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2
IP 172.67.69.130:0
Hash 80d7835f5975d487514df4cca11aa447
d5e43fb207a188598106de2a22c73d2e4c76c49b
449eb3599c1291ee5445ad62f68cd9983aaf2f4fe2ac169e940684732acdf493
GET /wp-content/themes/flatsome/assets/js/chunk.countup.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1408342
expires: Wed, 08 Nov 2023 13:11:48 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 56199022
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iM8bT3SwBmdU8g4HcLsL70hPi%2Fb7GawChOmyDGbtKM597E8ct303zGJAPZD3YztdM4ptjyXn8uPmLRQVwn%2BkOlU0jxL4Z44mVB6POPXelyLBcEynRq4kbVYbAVFydLum"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddda1c37b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2
172.67.69.130200 OK 3.3 kB URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2
IP 172.67.69.130:0
Hash 051a47e2a4995c3a4d4118e0282a4164
639067e8eb6a22bbb781c174bf42613702e542ad
ce6b2903223cddeb45eec0abe9c8ff13c38f35ad8e207b05cec25c207bd1dda4
GET /wp-content/themes/flatsome/assets/js/chunk.sticky-sidebar.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1408342
expires: Wed, 08 Nov 2023 13:11:48 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 70321374
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QEJVzy8QbDJf8xq8GJX2T90If1IOkAGxuiIrg1NytFXlx%2BlvfVyccsIsQv46Px6bsMHLFpid0LEUFh8YCfpvT8TcfkhuV8x8uXF8q%2B%2FctuAAYQCqOI2Y40140ekYPC0x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddda1c43b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
s.retargeted.co/1/nXbKZB.js
172.67.155.104200 OK 628 B URL HTTP/2 s.retargeted.co/1/nXbKZB.js
IP 172.67.155.104:0
File type ASCII text, with very long lines (310), with no line terminators
Hash fc76c99556bcdc7e8e3118c6103bf659
c72dfcfb50ec2bf3c2e486928cf02edd8e03ae95
2ebba885ccb13617d592de7aa8332817c5f0453ab2cacc0f679c9d2e34bbfaeb
GET /1/nXbKZB.js HTTP/1.1
Host: s.retargeted.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: text/javascript;charset=UTF-8
cache-control: no-cache, must-revalidate
last-modified: Thu, 24 Nov 2022 20:23:46 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3GO3qZwKTs%2B%2BsCOECJT8Px%2FghL6zyToRKTGpZr%2B91NPggGqxrMSz5ewCSovcmZBecRg2VrfhKj5Y9Aq6iBYFkktpp9NZYs136h7U7jBoq%2FH7d1%2BFT9DQNSGqQc7vYLBITpE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f4ddd04c9efab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash f97adbf26c1dd4a7226cf53a1ef6586d
9b5ac7ecd191a04db482ac1d9eb9ceeca9962528
778c4478c2ec0b0f146cb0f293fa5c1a410a8d787d6f4ddd9d03e9e09356f85e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149286
Date: Thu, 24 Nov 2022 20:24:10 GMT
Etag: "637f66bf-1d7"
Expires: Sat, 26 Nov 2022 13:52:16 GMT
Last-Modified: Thu, 24 Nov 2022 12:42:39 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OWDHOz1ESGH58zsMdC0lgENMEnxcND8jUdIIMxgC8K454jsc4Y-SDw==
Age: 4177
widgetapi.purechat.com/api/visitorwidget/widgetversions/a78874e3-e5d4-49a8-a370-81bdbe5e9258
52.14.220.91200 OK 170 B URL HTTP/2 widgetapi.purechat.com/api/visitorwidget/widgetversions/a78874e3-e5d4-49a8-a370-81bdbe5e9258
IP 52.14.220.91:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1a66174c87cea6a0b306a9eed686226c
507c1408e1ee266f69a4998fda8cc9cf8ba98438
595bb01818aa159dc8eb079e91e349970d89f8cb399d78743eaf64cfeedd0cd7
GET /api/visitorwidget/widgetversions/a78874e3-e5d4-49a8-a370-81bdbe5e9258 HTTP/1.1
Host: widgetapi.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/json; charset=utf-8
content-length: 170
server: Kestrel
cache-control: max-age=60
set-cookie: thirdPartyCookiesEnabled=true; expires=Fri, 25 Nov 2022 20:24:10 GMT; domain=purechat.com; path=/
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.iviskin.no
access-control-expose-headers: X-Requires-Auth
X-Firefox-Spdy: h2
widgetapi.purechat.com/api/visitorwidget/widgetversions/00ba73a2-02e1-4594-a72e-5e196f6edbc4
52.14.220.91200 OK 408 B URL HTTP/2 widgetapi.purechat.com/api/visitorwidget/widgetversions/00ba73a2-02e1-4594-a72e-5e196f6edbc4
IP 52.14.220.91:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash b376de4053ea5ed33a02a3e392a660b2
b7faf0b2564aaa15373547a734a0ba73bef9f398
49c754ea8de38d1cfbf53a90d3e478d3bb075a03dc18fbcfb94cc3da2cd34b91
GET /api/visitorwidget/widgetversions/00ba73a2-02e1-4594-a72e-5e196f6edbc4 HTTP/1.1
Host: widgetapi.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/json; charset=utf-8
content-length: 408
server: Kestrel
cache-control: max-age=60
set-cookie: thirdPartyCookiesEnabled=true; expires=Fri, 25 Nov 2022 20:24:10 GMT; domain=purechat.com; path=/
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.iviskin.no
access-control-expose-headers: X-Requires-Auth
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2
172.67.69.130200 OK 14 kB URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2
IP 172.67.69.130:0
Hash c97cf4ec727b69f7480ea19c14bb8de0
a0215319d5529cd39a4d07de000155a9a9f441cf
05c05ed17d8b3d7493c52ed1314404987978ce8b9f73ab3a2317bbdbfc9b1b32
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1408342
expires: Wed, 08 Nov 2023 13:11:48 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 49580546
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eoyw9tOaA7OHbmhLBcLfAMeWkSQDlyty3r6TwuelVs%2B7h73N%2BuBXCHOr9fTSSIzKN02bONo6ZPWTlA9mUn1NDTYuEw0YAhiU12gjno4xnJhenPpzQ55tE%2FHEb%2BfygAwc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddda1c51b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
api-cdn.purechat.com/api/visitorwidget/widget/00ba73a2-02e1-4594-a72e-5e196f6edbc4/15
54.230.111.110200 OK 34 kB URL HTTP/2 api-cdn.purechat.com/api/visitorwidget/widget/00ba73a2-02e1-4594-a72e-5e196f6edbc4/15
IP 54.230.111.110:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (56204)
Hash deba61deb21167771bf21d4731bafc2c
ca787830215dce1d4db0220395cb1611110c701c
d1610e193c127b2be7cc6f9a37d5b3c0feab8645b1d2530486c9dea3c32e0aee
GET /api/visitorwidget/widget/00ba73a2-02e1-4594-a72e-5e196f6edbc4/15 HTTP/1.1
Host: api-cdn.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iviskin.no
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Tue, 13 Sep 2022 07:50:33 GMT
server: Kestrel
cache-control: public, max-age=31536000
access-control-allow-credentials: true
access-control-allow-origin: https://www.iviskin.no
access-control-expose-headers: X-Requires-Auth
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L6lzVdlWcEspb-1kzCfc1rNfDLYBsxR4bOa0gmvD13mcYjBr7p_tbQ==
age: 6266018
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:24:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.iviskin.no/wp-content/themes/flatsome/assets/js/flatsome.js?ver=fcf0c1642621a86609ed4ca283f0db68
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/flatsome.js?ver=fcf0c1642621a86609ed4ca283f0db68
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=fcf0c1642621a86609ed4ca283f0db68 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1407626
expires: Wed, 08 Nov 2023 13:23:42 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 71238848
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q1dF8IRbqT1JVFdDbrsvyrH7aIo3mVrWg1IawsxQE3RngFLs1men8oxXrCA5fGxuiLhre1cdZRrmpciKC%2BY2lJCvXKeSb%2FxGFD%2BD0MV4kviMPn5M2lBlzcRS4nJ98siY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee80b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C8RAVQTH2V1MUSDNNNJG&lib=ttq
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C8RAVQTH2V1MUSDNNNJG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=C8RAVQTH2V1MUSDNNNJG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211242024093F7BEFA4825E036E3C1A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1bebad30b60012506a7b86c00320537766052bf3cfff65dc8b01ef43ad995f0e7fecfdbcd6639d416bff4b7ef3636547c45a632c4dde63e44dc88126b3fddb4158a9
content-encoding: gzip
x-origin-response-time: 7,23.218.222.69
x-akamai-request-id: 50eeee3f.513b6ae3
expires: Thu, 24 Nov 2022 20:24:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 20:24:09 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-222-69.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=7, inner; dur=3
x-parent-response-time: 107,23.36.79.28
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 172.67.69.130:0
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 3145508
expires: Thu, 19 Oct 2023 10:39:00 GMT
last-modified: Wed, 19 Oct 2022 10:24:46 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 801177954
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ANyccoUjx2FmWvDrHNpxAry5iKiPRoRVgc9yA5SMm7ulOYKouGCzrq9Y5hlbsLXdgUb8qc6xr5U3DvsWwAtHz17rE%2Fr3oOX1wGBSsMbw5AI2nT7NRknKimaq%2BjZM34rJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfbdf5b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.3.6
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.3.6
IP 172.67.69.130:0
GET /wp-content/plugins/pixelyoursite-pro/dist/scripts/public.js?ver=9.3.6 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=180291
access-control-allow-origin: *
age: 630508
expires: Fri, 17 Nov 2023 13:15:40 GMT
last-modified: Thu, 17 Nov 2022 13:09:37 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 958857876
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pVYdCRvYxC0rkTyiCKZ7W065omKxQYX26wK1y5ycyAj9%2BCl5rO1aSHeqRriO8KrOAqf6gGjB0nhJEgyAjuNMzpCKitIY%2F0JolQSYNg3v0VFywYoDHWh%2BcDIObeh1Db4U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcf6d20b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/woo-vipps/js/vipps.js?ver=1669026271
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/plugins/woo-vipps/js/vipps.js?ver=1669026271
IP 172.67.69.130:0
GET /wp-content/plugins/woo-vipps/js/vipps.js?ver=1669026271 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=10155
access-control-allow-origin: *
age: 294768
expires: Tue, 21 Nov 2023 10:31:20 GMT
last-modified: Mon, 21 Nov 2022 10:24:31 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 167217174
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=teCNdF58xxGrhkevtGD2V5yqVcbOYEo2U7dBczYfw4yCZvqBPtEyTeFkb0k7J0Mm0gBZ2jhPNbjZmmKa%2Fdsm8oPi4e4uNc3SswT2yXzxyjF7hkZpkD1UYRVEYSmGYTPU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee89b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff
IP 172.67.69.130:0
GET /wp-content/fonts/lato/S6uyw4BMUTPHjx4wWCWtFCc.woff HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:09 GMT
content-type: application/font-woff
last-modified: Tue, 08 Nov 2022 13:09:51 GMT
cache-control: max-age=31536000
expires: Thu, 08 Dec 2022 13:19:11 GMT
vary: Accept-Encoding
access-control-allow-origin: *
x-varnish: 58821080 57673497
age: 1406491
via: 1.1 webcache1 (Varnish/trunk)
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jWNwS6RrlwsDDbfg77wTVkQEIgisQJ4Ws5iDA4i9WIqDdV6bDiTANKPiaDBt8dIjV5KmCsIbZyVPz3XzJUx7AEnoQlJlOkmWaqdUABOZtzi3xCgtB%2BC30Vtu%2BZH%2F3zgZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddd0e8c1b521-OSL
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.174:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 24 Nov 2022 20:24:10 GMT
date: Thu, 24 Nov 2022 20:24:10 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=aSHA90jz4Fc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=gPzURAANB-4; Domain=.youtube.com; Expires=Tue, 23-May-2023 20:24:10 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+682; expires=Sat, 23-Nov-2024 20:24:10 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lnk.clickadsolutions.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&c2=true&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&vph=1024&vpw=1280&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d
34.226.38.159200 OK 0 B URL HTTP/2 lnk.clickadsolutions.com/trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&c2=true&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&vph=1024&vpw=1280&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d
IP 34.226.38.159:0
GET /trk/L5s8VkXi8c5g4TxkRihV2mty?browser=Firefox&c2=true&campaignId=1979020&campaignName=ZP5+-+EUR+-+NO&carrier=unknown&city=Oslo&cost=0.000400&deviceId=&keyword=arts%2Centertainment%2Cmovies%2Cmusic%2Cmen%2Cwomen%2Cgames&longCampaignId=b999ffc0-6024-11ed-9380-0a918cbcbb97&match=&operatingSystem=®ion=OSLO&source=vitellary-lion&target=sierra-lea-upsg9ewaw&trafficType=POPUP&visitorType=NON-ADULT&vph=1024&vpw=1280&zid=zrf05349536c3511edb631126cf364109bb5f28f50a2574628aa7f29667554da30069236fdedfe8f299d HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bnr.thedataclicks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:06 GMT
content-type: text/html;charset=UTF-8
set-cookie: v=t; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Fri, 24 Nov 2023 20:24:06 GMT; Secure; SameSite=None
cas=3373:1788:1788:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Fri, 24 Nov 2023 20:24:06 GMT; Secure; SameSite=None
rls=291098:1788:1788:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Fri, 24 Nov 2023 20:24:06 GMT; Secure; SameSite=None
com=17151:156:NO:1788:1788:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Fri, 24 Nov 2023 20:24:06 GMT; Secure; SameSite=None
content-language: en-US
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124202409C7F48271A149106DC832
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb032e6056524d629c3b2b1b60168308f86d8749aa8d4ee5450b5d9de88b31f0e22c8e5b4b4d86c121b9b09f7687fc53db3a109057eccc9cd91e9db31579a16072
content-encoding: gzip
x-origin-response-time: 24,23.218.222.74
x-akamai-request-id: 1e56b961.513b6d2c
expires: Thu, 24 Nov 2022 20:24:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 20:24:09 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-222-74.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=24, inner; dur=5
x-parent-response-time: 127,23.36.79.28
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1408342
expires: Wed, 08 Nov 2023 13:11:48 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 21958273
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DZC3TsfJXE4GaogrVTLFH%2FqwJBkJnsB83X2ckBOgdGzJiL4UA0Uj5Jt4mytAzJxX0W2toy7ZgiRN870RLj8jGWEijFIugfsEvIXpGe6DQO0QDFTAYA0sd1DRZEs7fjOZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddda1c46b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 0 B IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=2D277BB56D446B870D7969D36CB16A93; domain=.bing.com; expires=Tue, 19-Dec-2023 20:24:10 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BDE81A58A6B140D98D3751F3F5C14C32 Ref B: OSL30EDGE0215 Ref C: 2022-11-24T20:24:10Z
date: Thu, 24 Nov 2022 20:24:09 GMT
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/klaviyo/inc/js/kl-identify-browser.js
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/plugins/klaviyo/inc/js/kl-identify-browser.js
IP 172.67.69.130:0
GET /wp-content/plugins/klaviyo/inc/js/kl-identify-browser.js HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=754
access-control-allow-origin: *
age: 204610
expires: Wed, 22 Nov 2023 11:33:58 GMT
last-modified: Tue, 15 Nov 2022 13:41:54 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 661605888
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1euiZvcN1gWtHHNEP5EYxN3TwEgBTiayT5nErbsduExt4JlfDAJAprFVAUHMi4mHxVN8hIJP3S0qeybuQhjeRi%2FSiZ2Av0D6tjDrzCwZ34FV4dyBJatca6WZ0ZlxWnAC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee8bb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 172.67.69.130:0
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 3145509
expires: Thu, 19 Oct 2023 10:38:59 GMT
last-modified: Wed, 19 Oct 2022 10:24:46 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 763368093
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC5Mo9mxMJT8kTU11GlU8P7l9QuKv2h557WrY3gHp2GzlvgqkRFaREVpbF49MsGfIxlNL%2BzrUyJ%2FRV79O%2Bh5d%2BzcYoPYnZwyUEz3B7Qa1CGKPlCDlZJB16p52%2FSS1vE9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfade6b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.2
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.2
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=16237
access-control-allow-origin: *
age: 1407626
expires: Wed, 08 Nov 2023 13:23:42 GMT
last-modified: Tue, 08 Nov 2022 13:09:10 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 40735491
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9oEShNIM0jMbGjAWfThc3x9dvH40B2lb8Lt5bxzpbYIPiBEd8jlGR6MzP0EetUq2DBdd%2BTjO98w5ni7ylZJKDcIGjfCTFua9S8v7H0XQ35sXKEwE%2FZLloC8aZe6Q9kSS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee87b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.purechat.com/VisitorWidget/WidgetScript
54.230.111.33200 OK 0 B URL HTTP/2 app.purechat.com/VisitorWidget/WidgetScript
IP 54.230.111.33:0
GET /VisitorWidget/WidgetScript HTTP/1.1
Host: app.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Wed, 26 Oct 2022 22:16:19 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 18:01:46 GMT
cache-control: public,max-age=14400
etag: W/"6d472c54bbcb8a12a1f1d8f4906802b1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2ov61ywotRkrAGxFla3GGiKEi8FEZlNLidjvb7ALinQoarcqKx437A==
age: 8544
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-popups.js?ver=3.16.2 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:10 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1408342
expires: Wed, 08 Nov 2023 13:11:48 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 73498859
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3STaitewfjuinuIIGSI5U5jeXXe7Avw1iET%2B1jJPxWHn3%2F5gOA%2F06h7IIjYJjkzQcJ9xGlSv4w8fqlYx6cSIoziYnC6S9lrFdnaa%2B4%2FjZUFGbGGpO9TYaR64JxM8cUlU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddda1c4cb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=a0349779516f2e7c5703074420d5e855
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=a0349779516f2e7c5703074420d5e855
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=a0349779516f2e7c5703074420d5e855 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
age: 1407626
expires: Wed, 08 Nov 2023 13:23:42 GMT
last-modified: Tue, 08 Nov 2022 13:09:07 GMT
vary: Accept-Encoding
via: 1.1 webcache1 (Varnish/trunk)
x-varnish: 73631030
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gimpT%2BHhI1bCiB5qPU2U2gaMn6corCcdhcJeX8E2zWfl%2FLcgYrw8lTGWFAjxAR7%2B0WYQcLTm6cXetKZ83SFZXVdPgHdQWixZyZQg5P9PsVfmUhpR5EH6BVqt4JUfeDpc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee92b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.iviskin.no/wp-content/themes/flatsome/inc/integrations/wp-rocket/flatsome-wp-rocket.js?ver=3
172.67.69.130200 OK 0 B URL HTTP/2 www.iviskin.no/wp-content/themes/flatsome/inc/integrations/wp-rocket/flatsome-wp-rocket.js?ver=3
IP 172.67.69.130:0
GET /wp-content/themes/flatsome/inc/integrations/wp-rocket/flatsome-wp-rocket.js?ver=3 HTTP/1.1
Host: www.iviskin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iviskin.no/?pa-partnerid=44549&pacid=637fd2e7c70719.33439561&utm_source=partnerads&utm_medium=affiliate&utm_campaign=44549
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:24:08 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=364
access-control-allow-origin: *
age: 15778446
expires: Fri, 26 May 2023 05:30:02 GMT
last-modified: Wed, 04 May 2022 15:46:23 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/7.1)
x-varnish: 466912620
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJbpd5lCe%2FhnUvt97gW7txHdim8qTIiwDV%2FzBYCq%2BvAlVGPRENqvKPEsyeUxCjBjzAsyJ6eggg2dDYMA6eELhWIStvyqdMRCcD2LjmxDBFmcG25GvUKRvvSfzWtkSgMM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f4ddcfee84b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2