74d82.zzwdcc.wy5532.com/
200 OK 484 B IP
ASN #43350 NForce Entertainment B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (484), with no line terminators
Hash f0db18daa500796791e3accf1788bb26
185e24e48ac176efddec94e89af0353779eadb62
327d3df92f727c60e12d0afbc0acd39dbcc3b467647826a1b1f4aefa7e3ff9bd
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 74d82.zzwdcc.wy5532.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 484
content-type: text/html; charset=utf-8
date: Tue, 07 Feb 2023 21:33:51 GMT
server: nginx
set-cookie: sid=1da5c246-a72f-11ed-8735-617a1ae273b5; path=/; domain=.wy5532.com; expires=Mon, 26 Feb 2091 00:47:59 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14294
Expires: Wed, 08 Feb 2023 01:32:06 GMT
Date: Tue, 07 Feb 2023 21:33:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2262
Expires: Tue, 07 Feb 2023 22:11:34 GMT
Date: Tue, 07 Feb 2023 21:33:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 20:34:09 GMT
content-type: application/json
age: 3583
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5659
Expires: Tue, 07 Feb 2023 23:08:11 GMT
Date: Tue, 07 Feb 2023 21:33:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SjWcl7ZG07UE1bze8j6sfOSHQdxX3gXWaj30gz6nPtli8T4sRf/AJI+sDm2BNBexi0+9Z3meFao=
x-amz-request-id: FN0XKV83KZ5AHM7S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 20:45:42 GMT
age: 2890
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 21:33:52 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
74d82.zzwdcc.wy5532.com/favicon.ico
404 Not Found 9 B URL HTTP/1.1 74d82.zzwdcc.wy5532.com/favicon.ico
IP
ASN #43350 NForce Entertainment B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: 74d82.zzwdcc.wy5532.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://74d82.zzwdcc.wy5532.com/
Cookie: sid=1da5c246-a72f-11ed-8735-617a1ae273b5
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 07 Feb 2023 21:33:51 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 21:14:52 GMT
age: 1140
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8796
Expires: Wed, 08 Feb 2023 00:00:29 GMT
Date: Tue, 07 Feb 2023 21:33:53 GMT
Connection: keep-alive
74d82.zzwdcc.wy5532.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTgxMjgzMiwiaWF0IjoxNjc1ODA1NjMyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBxZ2x2bWszZnR1Y3BjdGMxYjA5Z2UiLCJuYmYiOjE2NzU4MDU2MzIsInRzIjoxNjc1ODA1NjMyMTExNzc5fQ.rD45AeKvYQfeJExAC9Pk2YnA12YyIz4pQFcRgZqLQzQ&sid=1da5c246-a72f-11ed-8735-617a1ae273b5
302 Found 11 B URL HTTP/1.1 74d82.zzwdcc.wy5532.com/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTgxMjgzMiwiaWF0IjoxNjc1ODA1NjMyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBxZ2x2bWszZnR1Y3BjdGMxYjA5Z2UiLCJuYmYiOjE2NzU4MDU2MzIsInRzIjoxNjc1ODA1NjMyMTExNzc5fQ.rD45AeKvYQfeJExAC9Pk2YnA12YyIz4pQFcRgZqLQzQ&sid=1da5c246-a72f-11ed-8735-617a1ae273b5
IP
ASN #43350 NForce Entertainment B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTgxMjgzMiwiaWF0IjoxNjc1ODA1NjMyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBxZ2x2bWszZnR1Y3BjdGMxYjA5Z2UiLCJuYmYiOjE2NzU4MDU2MzIsInRzIjoxNjc1ODA1NjMyMTExNzc5fQ.rD45AeKvYQfeJExAC9Pk2YnA12YyIz4pQFcRgZqLQzQ&sid=1da5c246-a72f-11ed-8735-617a1ae273b5 HTTP/1.1
Host: 74d82.zzwdcc.wy5532.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://74d82.zzwdcc.wy5532.com/
Cookie: sid=1da5c246-a72f-11ed-8735-617a1ae273b5
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 07 Feb 2023 21:33:52 GMT
location: http://orest-vlv.com/zcvisitor/1df43ac1-a72f-11ed-90fd-0adaf4a73785/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
server: nginx
set-cookie: sid=1da5c246-a72f-11ed-8735-617a1ae273b5; path=/; domain=.wy5532.com; expires=Mon, 26 Feb 2091 00:48:00 GMT; max-age=2147483647; HttpOnly
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K6hipt8reOcshjRkwMZbqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h5QD2mhc312AhoPcyq+W5jpaWiA=
orest-vlv.com/zcvisitor/1df43ac1-a72f-11ed-90fd-0adaf4a73785/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
200 1.1 kB URL HTTP/1.1 orest-vlv.com/zcvisitor/1df43ac1-a72f-11ed-90fd-0adaf4a73785/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ac8b8209d1af1a6f29cb79c172471766
a2debbbd8e2cac1a6e8282ef0322be0877a0c57d
a1b3eaea86d937dbd13048422bc403d5c629f4ca990f0c04db4afef4f20bb1cf
GET /zcvisitor/1df43ac1-a72f-11ed-90fd-0adaf4a73785/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1
Host: orest-vlv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://74d82.zzwdcc.wy5532.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Tue, 07 Feb 2023 21:33:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: anckiSOg
orest-vlv.com/zcredirect?visitid=1df43ac1-a72f-11ed-90fd-0adaf4a73785&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
200 356 B URL HTTP/1.1 orest-vlv.com/zcredirect?visitid=1df43ac1-a72f-11ed-90fd-0adaf4a73785&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9d114559ed5dc381324cb32d47063d90
4b16f733768b87ec64f017f9e576275330c9dbde
dbe17731b5f728e5aed60c87ffcb6473d0c9df855bbe13f29d6f5f0dd1cb61b6
GET /zcredirect?visitid=1df43ac1-a72f-11ed-90fd-0adaf4a73785&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: orest-vlv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://orest-vlv.com/zcvisitor/1df43ac1-a72f-11ed-90fd-0adaf4a73785/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Tue, 07 Feb 2023 21:33:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: koSPAqID
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash db289a8670f84362b069a74f932b2a32
c6b3ac644538ab664635b49022dcb2b12bbe4e3d
38ebeb2c2b0f7a493a0415f3ff44680ace2935a95ea1fd1ce7400fbc6465a04b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38EBEB2C2B0F7A493A0415F3FF44680ACE2935A95EA1FD1CE7400FBC6465A04B"
Last-Modified: Mon, 06 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8452
Expires: Tue, 07 Feb 2023 23:54:45 GMT
Date: Tue, 07 Feb 2023 21:33:53 GMT
Connection: keep-alive
clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3
200 OK 352 B URL HTTP/2 clever-redirect.com/s/r6?s=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (352), with no line terminators
Hash 3abe5a10ee480ea7c301a60dee4a0dea
9534789cd0b39f19c34ac1620599bb599d954a9d
5163751d1ff98e4e6d7721abd3d15ba93bfe6b8aaef3cddd9f421bc991f62677
GET /s/r6?s=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3 HTTP/1.1
Host: clever-redirect.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://orest-vlv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: ee504981ed025d0cf6c261f596455430=15adae893d0a3e04abfe61c273a3a8e91cf5ebb16aeb075984ba6c5b3fb1459da%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22ee504981ed025d0cf6c261f596455430%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Wed, 08-Feb-2023 21:33:53 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 352
content-type: text/html; charset=UTF-8
date: Tue, 07 Feb 2023 21:33:53 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d1773cbb45e8b786495008a651c7b6d1
88992b0e750ab91d8e0cc931c50decb1e47f7625
1b8bc9b115d3fd815e3659118e5687522ec18a99dcd85bf651ee902170504ca5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B8BC9B115D3FD815E3659118E5687522EC18A99DCD85BF651EE902170504CA5"
Last-Modified: Tue, 07 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Tue, 07 Feb 2023 23:09:35 GMT
Date: Tue, 07 Feb 2023 21:33:53 GMT
Connection: keep-alive
lookandfind.me/s/a?t=11&f=1&u=41ecaa9ae33de01f1e1a4b6551068474&m=shop4kids.no&s1=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3&s5=wc
200 OK 412 B URL HTTP/1.1 lookandfind.me/s/a?t=11&f=1&u=41ecaa9ae33de01f1e1a4b6551068474&m=shop4kids.no&s1=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3&s5=wc
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document, ASCII text, with very long lines (412), with no line terminators
Hash a76fa4885a1064e4c4448843152e155d
5d9563ae4705e55f4b3004222268d44a8bd0d657
1160eb70fde7238896d019b9206e352e30c90bb662be75aa9d344ad2aadcd06b
GET /s/a?t=11&f=1&u=41ecaa9ae33de01f1e1a4b6551068474&m=shop4kids.no&s1=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3&s5=wc HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 21:33:54 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.13
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
lookandfind.me/s/r?u=https%3A%2F%2Fwww.linkbux.com%2Ftrack%3Fpid%3DLB00002126%26mid%3D48935%26url%3Dhttps%253A%252F%252Fwww.shop4kids.no%252F%26uid%3Dad4b694715316f9da42c644c8292cb0b&h=5fc4ee90eca6d786bbc7b090447f806f
200 OK 326 B URL HTTP/1.1 lookandfind.me/s/r?u=https%3A%2F%2Fwww.linkbux.com%2Ftrack%3Fpid%3DLB00002126%26mid%3D48935%26url%3Dhttps%253A%252F%252Fwww.shop4kids.no%252F%26uid%3Dad4b694715316f9da42c644c8292cb0b&h=5fc4ee90eca6d786bbc7b090447f806f
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (326), with no line terminators
Hash 040fac6c7df745968030f686aaab2b9f
233f1c10ce286c5ef56c3d021fb317e051086737
7edcef46606a0641d0a04d51547428e593bb4bbf264703aee1e7b725a5974bee
GET /s/r?u=https%3A%2F%2Fwww.linkbux.com%2Ftrack%3Fpid%3DLB00002126%26mid%3D48935%26url%3Dhttps%253A%252F%252Fwww.shop4kids.no%252F%26uid%3Dad4b694715316f9da42c644c8292cb0b&h=5fc4ee90eca6d786bbc7b090447f806f HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 21:33:54 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.13
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Tue, 07 Feb 2023 23:45:02 GMT
Date: Tue, 07 Feb 2023 21:33:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Tue, 07 Feb 2023 23:45:02 GMT
Date: Tue, 07 Feb 2023 21:33:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Tue, 07 Feb 2023 23:45:02 GMT
Date: Tue, 07 Feb 2023 21:33:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88178e0f623494e30ece4da4eed04d60
7f016d87157a577e4ad4e4cf6c854a0489f8571a
e5658ac599ca37e797637a596ca9b65c80c1053b2ce5dacc667ae3b8b1ce54a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6384
x-amzn-requestid: 5f91a438-31d9-42ca-96b4-71344cc736c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77IcE2-oAMFbZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17235-1ce1ebfa4e9ae6053434c48d;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: li__CyiikZFRNF7c8_9Kbi18VJ39UzJiNgP9z141MCUFVPnYAEXPCg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 22:24:59 GMT
age: 83335
etag: "7f016d87157a577e4ad4e4cf6c854a0489f8571a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59419fb1cf4689bed183d0e9a6aed782
47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a
e6009407bd61bee1ae16ec30ea5914be77c56ee65dfb30595b10a1cedc6798c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12682
x-amzn-requestid: d858d90a-b1ca-401c-8e00-8ccd9c0a7504
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78mUEsfIAMFreg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1748e-2783de3e3de9c520246bf06e;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:43:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _D5bI_flPN8fUn6aTGqO76FRSDwwC379nkVCBptmZkALErIVFCZfpA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
age: 85115
etag: "47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: e7653b49-3160-42e3-8292-8ae32604f775
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc8KEoPoAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb4-68fd76a95ffa656318bedff6;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KaitXsesZ9mJducJ54ChzQGfb-2-hEN4W_QojGMKXYEji4xsjNdWCA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 09:07:41 GMT
age: 44773
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
age: 85115
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa6c416b3a87ded887c9dcf7c51e5dd0
45f4ef9e68591c00669043abe96959bead8f17ae
9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
age: 85115
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92008e687831334af1cdbf4b8a57579f
e6ff750f12836637adf5b253d64c2102fdf3c180
39af3e630e0271b54139849c1b596efbdc69a23ce943e5330341d49f77798c7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7183
x-amzn-requestid: 02695a8d-2ab8-4d77-bfbe-f99418d8ef00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78YOGsyoAMF5wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17434-2614cef4059e7fd5009cb46d;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:42:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qbUWAiTEzfmIOkYgKdBEYxEnRky5wA7ajMWumei7fXeIqLN9B-riBw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:27 GMT
age: 85107
etag: "e6ff750f12836637adf5b253d64c2102fdf3c180"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 2eae1a1ff30e6f40db64e1270d63138d
fe12840daeb0ce92c165aa9b97fb95cd7d8f475a
ec7f5a8b22bce9e2e13d422745db119dc69d7803449ca130c8b96b15b5362fd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3247
Cache-Control: max-age=98827
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:54 GMT
Etag: "63e1961e-2d7"
Expires: Thu, 09 Feb 2023 01:01:01 GMT
Last-Modified: Tue, 07 Feb 2023 00:06:54 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
200 OK 280 B IP
Hash 7bca4b177e589484ca0e3e29161fad6f
867caa9b5838b61aa3d082efc7ca8cec7d503181
72d0d640bd36466764e9a127fc51e007c3a0a1001a00982b9d0a4eafeb131a11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4143
Cache-Control: max-age=96116
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:55 GMT
Etag: "63e18808-118"
Expires: Thu, 09 Feb 2023 00:15:51 GMT
Last-Modified: Mon, 06 Feb 2023 23:06:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
r.srvtrck.com/v1/redirect?url=https%3A%2F%2Fwww.shop4kids.no%2F&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Flookandfind.me%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_lxub0q
302 Found 0 B URL HTTP/2 r.srvtrck.com/v1/redirect?url=https%3A%2F%2Fwww.shop4kids.no%2F&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Flookandfind.me%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_lxub0q
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?url=https%3A%2F%2Fwww.shop4kids.no%2F&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Flookandfind.me%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_lxub0q HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 07 Feb 2023 21:33:55 GMT
content-length: 0
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=3ab47dd669ca4403b75312986665cea5; Domain=.srvtrck.com; Expires=Wed, 07-Feb-2024 21:33:55 GMT; Path=/
location: /v2/go?t=ctfp3%3A3%2F3f29dndt6c5%3F0ib1a4568l5%3D%3D7s7%2690%269ie2e507e%26es8v334420d147952fd1432c0c0a0e0b%3D2w48c9d53%3Ddwd795w0212i8%267706c%3Das4%2F4%2F8e0.678ja%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=1ffcb9363fa14a15acf00879e89437f3&sct=0&ct=1675805635514&cu=df21934cdc2a4e3b82e4ec0de3ed9d09&ykuid=3ab47dd669ca4403b75312986665cea5&sc=1&cs=29b965fc807f944503121334639e3edf
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 795f3f258f54b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 7bca4b177e589484ca0e3e29161fad6f
867caa9b5838b61aa3d082efc7ca8cec7d503181
72d0d640bd36466764e9a127fc51e007c3a0a1001a00982b9d0a4eafeb131a11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4143
Cache-Control: max-age=96116
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:55 GMT
Etag: "63e18808-118"
Expires: Thu, 09 Feb 2023 00:15:51 GMT
Last-Modified: Mon, 06 Feb 2023 23:06:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/s/gts1p5/vo0kxkPoo7M
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/vo0kxkPoo7M
IP
Hash 6b666e4dd0e7dbffcb749e7ea6b73aa3
da3a422c0eccf28701451b848abd2db881f0013e
fe5b2214f5642b12446eaaeb43c8f2d05f12cb160e446e29e5287fe75539bc0c
POST /s/gts1p5/vo0kxkPoo7M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/vo0kxkPoo7M
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/vo0kxkPoo7M
IP
Hash 6b666e4dd0e7dbffcb749e7ea6b73aa3
da3a422c0eccf28701451b848abd2db881f0013e
fe5b2214f5642b12446eaaeb43c8f2d05f12cb160e446e29e5287fe75539bc0c
POST /s/gts1p5/vo0kxkPoo7M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 87ce7450bdc5634039fa43310864e1e5
8942ddef3c1ba4e93c23733427dec6de2ff680ab
5c88aafd05b4254367d9e62e4d6d3d235cbf87108ddc071d7b69d3c113c1c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C88AAFD05B4254367D9E62E4D6D3D235CBF87108DDC071D7B69D3C113C1C27B"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 08 Feb 2023 03:33:56 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 87ce7450bdc5634039fa43310864e1e5
8942ddef3c1ba4e93c23733427dec6de2ff680ab
5c88aafd05b4254367d9e62e4d6d3d235cbf87108ddc071d7b69d3c113c1c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C88AAFD05B4254367D9E62E4D6D3D235CBF87108DDC071D7B69D3C113C1C27B"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 08 Feb 2023 03:33:56 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash daec5da92402dd8cc281998c77ba805f
9b945f6f662d8005ef4dcf855dcc98924345f56a
a23bdde3679064db3b9d17c74fd86451bcdacdf79488f5256aeb5bfd1a348662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_11_1_300x.jpg?v=1668787643
200 OK 12 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_11_1_300x.jpg?v=1668787643
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 122514fb68448a1d5775e54aece7f956
e74fc1e5e384f5a56289ac5219a4be0c5107c3d1
68a3b587ac94cbc05cb8a44cf3eeaa68736f5aa27faef3da8529199c93f80ac2
GET /s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_11_1_300x.jpg?v=1668787643 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 12129
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_11_1_300x.jpg>; rel="canonical"
source-length: 39422
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 5aae0b73-4096-4275-8dcd-e6506cbecd30
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Sat, 04 Feb 2023 05:40:20 GMT
cf-cache-status: HIT
age: 309124
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QwblxnIw9dqHa8O20UoskUBTU5WH3T7fx4d%2FZrXlZNfGF65z75tlw%2BEot51do6Tr7dxQON3UvYUUIe9Sn03p2hsEP8ughx494KpU61NJ7UHOIAJ47N8gEYIyR566cWEgrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1972.171, imageryFetch;dur=30.185, imageryProcess;dur=1940.576;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 795f3f2ce9df1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_110x.png?v=1622369878
200 OK 3.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_110x.png?v=1622369878
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 6db8d8794b12e18efd00e8525f90b230
48a66ee005477e8f9a8b250c0d1f865253e71354
34f2e7aef79109df6bef59bddda9fd4739d31a6d1502583ed7f933cf39fc3e8d
GET /s/files/1/0160/9003/8336/files/new_logo_110x.png?v=1622369878 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 3395
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_110x.png>; rel="canonical"
source-length: 36815
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 47f2511b-863c-4511-a6e8-28f9311f6822
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 05:40:18 GMT
cf-cache-status: HIT
age: 256752
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GjQU8IVmEb9UJQ1rHVqQF6DJ%2Fh4AO%2Bg9AkU1FHQDtfZL9J45RMidXpm1U%2BgqUGvnfX1RBAT4UBgcqZc2KCcUBh2SJ0suywfcJPCIJVj2JkhCqprazK2ZdXUGSRVf4GDqnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=199.700, imageryFetch;dur=33.646, imageryProcess;dur=164.890;desc="image", cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 795f3f2ce9dc1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_14_1_300x.jpg?v=1668787356
200 OK 22 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_14_1_300x.jpg?v=1668787356
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 1335c889cf85ccb17cf15c7dd2100ce7
3927eb4a6210e440975b190efcad85df63c8bebf
de18d8021cea335f4e424c574d6f33023806e76e96a3a8157a9663f41ae97571
GET /s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_14_1_300x.jpg?v=1668787356 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 22235
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_14_1_300x.jpg>; rel="canonical"
source-length: 64184
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 99963fee-aa8e-4886-8fac-3b9a291f8a3b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 09:29:20 GMT
cf-cache-status: HIT
age: 293262
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dYeXdmH8Xmf%2Bb6hYGUumC8ujeDbPiUrX0ZZeBPCDdvyZ8W6na8iOWpsV5jUFUWwZdcIqaYP4tSDhznKoVn49bs%2BqM%2FE6ZWKOvh%2B3C66pz3d08NX1w3fcr6ZQ9MNIWBH%2FKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=836.664, imageryFetch;dur=93.433, imageryProcess;dur=741.785;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 795f3f2ce9dd1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_150x.png?v=1622369878
200 OK 4.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_150x.png?v=1622369878
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 1fe62dfad142ba9d30f197f1b165d2ce
5db999559ee03d1f6f9801b3f3b15d125b1a5923
8c964b648afdaf68805609cb9286ca2a36c75db7edcf1d3c996dc13a04cd62a2
GET /s/files/1/0160/9003/8336/files/new_logo_150x.png?v=1622369878 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 4393
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/new_logo_150x.png>; rel="canonical"
source-length: 36815
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 44a40e98-b316-4775-8d9d-b5fa05c37196
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 05:40:18 GMT
cf-cache-status: HIT
age: 256751
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TTI5oBVad8GLoY4YZ128HH01MC3ZFMvFYuA9L%2FH4l8nY3A7klFp1z4g1uXpoCNKq%2BxMnHed%2BHzJ7Cb3anatB0axT2VU2AswYYgT7CQ021yTTUPnE1%2BgRmcmmVCJ5d3lhJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=380.705, imageryFetch;dur=108.140, imageryProcess;dur=271.186;desc="image", cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 795f3f2ce9db1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_16_1_300x.jpg?v=1668788105
200 OK 12 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_16_1_300x.jpg?v=1668788105
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash d2c3df9b8b6341a4bebf762771e50bef
3d7c669113041a0d8af37e4943610b8bd507b0a9
2bd24b7bcd8672b275691fff934865f2490099c3cd778b9b0e4fbf27b6bbe45c
GET /s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_16_1_300x.jpg?v=1668788105 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 11629
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_16_1_300x.jpg>; rel="canonical"
source-length: 34927
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: f578f409-c489-4ff6-a944-75d2a1ee485a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 04 Feb 2023 12:45:51 GMT
cf-cache-status: HIT
age: 282677
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2FSmvxaeeInklH1BElG8cAu1t%2BjLzuEZHDLHsGSaN26KcsDzPMdqzDuq%2BBk79SB%2Fir2pbfSHtMabrWk1ZqnJoY5BWMW9%2B9h7czl1BnnHADYkSFSiQjfX1e6H2Ujj1aCQfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1431.208, imageryFetch;dur=136.085, imageryProcess;dur=1234.918;desc="image", cfRequestDuration;dur=15.999794
server: cloudflare
cf-ray: 795f3f2ce9e01bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_17_1_300x.jpg?v=1668788608
200 OK 18 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_17_1_300x.jpg?v=1668788608
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash fda6e1b4a82a48c2027250ab55ef3eac
7eab3669c397236935d0dbbb820f04ae4326c210
3aebfc269de01b2637246f26427500f7d4db8c07cb5b4c3bae13be72afbd2518
GET /s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_17_1_300x.jpg?v=1668788608 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: image/avif
content-length: 17531
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/files/Instagram_Post_1080x1080_px_17_1_300x.jpg>; rel="canonical"
source-length: 51974
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: e27c5421-44df-40a6-98c4-32949aa484e3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Tue, 31 Jan 2023 04:05:43 GMT
cf-cache-status: HIT
age: 344946
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HffR0BtWoanWQkN5wtdesw%2F2EkEEb4abLjtl3Z7hQpFYrMMz8leotoTVNSrYGAwQVQItYfwJPxwseAM5BvS5ST2vjpeaEr2Pywa4l%2BOPmGccjLyr29NwBfg7LOYTP3ESOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=639.162, imageryFetch;dur=70.454, imageryProcess;dur=567.693;desc="image", cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 795f3f2ce9e11bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jf79.net/c/?si=16476&li=1707597&wi=255978&ws=v030400012745df21934cdc2a4e3b82e4ec0de3ed9d09&ws2=2588750acba045468d0d6283a3c3afec
301 Moved Permanently 28 kB URL HTTP/2 jf79.net/c/?si=16476&li=1707597&wi=255978&ws=v030400012745df21934cdc2a4e3b82e4ec0de3ed9d09&ws2=2588750acba045468d0d6283a3c3afec
IP
Hash 0aca4378d9753ca70467cf867f9728ed
87c0dfe0c6d908308baa83b2b86ebaef43adbe5e
cf9f767a296475694e6b5c9265abf97615c0ede803f249cf405889b112985051
GET /c/?si=16476&li=1707597&wi=255978&ws=v030400012745df21934cdc2a4e3b82e4ec0de3ed9d09&ws2=2588750acba045468d0d6283a3c3afec HTTP/1.1
Host: jf79.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.srvtrck.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 07 Feb 2023 21:33:55 GMT
content-type: text/html; charset=UTF-8
location: https://jf79.net/redirect/global.php?dai_url_domain=shop4kids.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&dai_url=
set-cookie: dci=GVxs0SomBUWmnmH; expires=Thu, 08-Feb-2024 21:33:55 GMT; Max-Age=31622400; path=/; domain=.jf79.net; secure; HttpOnly; SameSite=None
pdc=GVxs0SomBUWmnmH; expires=Thu, 08-Feb-2024 21:33:55 GMT; Max-Age=31622400; path=/; domain=.jf79.net; secure; HttpOnly; SameSite=None
ci_16476=ZF4xNjc1ODA1NjM1LGRjaV5HVnhzMFNvbUJVV21ubUg%3D; expires=Thu, 08-Feb-2024 21:33:55 GMT; Max-Age=31622400; path=/; domain=.jf79.net; secure; HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-expose-headers: P3p, Cache-Control, Expires, Content-Length, Content-Type
cache-control: no-store, no-cache, must-revalidate, max-age=14400
x-xss-protection: 0
expires: Wed, 08 Feb 2023 01:33:55 GMT
x-daisycon-cluster: ApacheContainer-aa1ae7f64d42-tracking.daisycon.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zz8HbgEF6YihKJI%2BDpNkcy%2FT1mz603xLl1Bt0Fjk0BH8LZTqphD05aDCvIaHa9A3MrxBx4rbhedsajESBJmX1f4mSgs0ydkSxq6h%2FhWJT%2B0ApOBkDy2YYcQWEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795f3f273a500b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c8fb4c0284c06579b153d9857e1ca37d
a543135c9beb1f9f50c9233b1fc5896dcab10291
10226daebdf80d111440efabcb8d7866a8b3a826d94a36d411f169701f432035
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10226DAEBDF80D111440EFABCB8D7866A8B3A826D94A36D411F169701F432035"
Last-Modified: Tue, 07 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8070
Expires: Tue, 07 Feb 2023 23:48:26 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 25 kB IP
ASN #20940 Akamai International B.V.
Hash 835125c08b222445b14a68db99fb91b7
6e6210f7b35f836f4dfe64dbc4faaca76ec5496f
f65e59ecdced2fdf856a33b354023049b3343109c50ce2d0d7d91a7bb91162a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10226DAEBDF80D111440EFABCB8D7866A8B3A826D94A36D411F169701F432035"
Last-Modified: Tue, 07 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8070
Expires: Tue, 07 Feb 2023 23:48:26 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
fonts.shopifycdn.com/libre_baskerville/librebaskerville_n4.c24788bb1ddc6b870a25ccf62d9704bf2cd8f587.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=f31029abf7a5d1163c0b021764a9b574e8ff77b4355b89003b09676c9136c350
200 OK 53 kB URL HTTP/2 fonts.shopifycdn.com/libre_baskerville/librebaskerville_n4.c24788bb1ddc6b870a25ccf62d9704bf2cd8f587.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=f31029abf7a5d1163c0b021764a9b574e8ff77b4355b89003b09676c9136c350
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash c71202593b0d0ec39873ada4093f9491
18e976ed8a1064c2c0b40ee9e366e066b14c1a26
1ca921ccc6cbb1f05733f758531310f51b4d90f588db218cffb409a8f47edf21
GET /libre_baskerville/librebaskerville_n4.c24788bb1ddc6b870a25ccf62d9704bf2cd8f587.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=f31029abf7a5d1163c0b021764a9b574e8ff77b4355b89003b09676c9136c350 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: font/woff2
content-length: 34040
cf-ray: 795f3f2e1afbb4fa-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1306388
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 18:39:50 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/libre_baskerville/librebaskerville_n4.c24788bb1ddc6b870a25ccf62d9704bf2cd8f587.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: 1deeac95-2716-4eee-8591-3fbdf91c3eba
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1I9DnOGkqnWmJ2xAwfZjmLop05BBsjj4%2BYIqjCOXmSH9t7mKGIPdikdSuYbM3L4%2BJTGqWewT66zfJKzDhhIRkS8tpuIjbbirwDYW%2FpwRVLAxhHhNs1iEOaT6z8y9RP2XjQLADI3%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=32.861, imageryFetch;dur=32.430, cfRequestDuration;dur=6.999969, cfRequestDuration;dur=36.999941
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/harmonia_sans/harmoniasans_n4.73cf0589f7839ec88463a09f5335a2885467ed0c.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=01cf344a1d2db68a5feaeb5954d55a993865f86cdbc6f059db6656291b59c1b8
200 OK 25 kB URL HTTP/2 fonts.shopifycdn.com/harmonia_sans/harmoniasans_n4.73cf0589f7839ec88463a09f5335a2885467ed0c.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=01cf344a1d2db68a5feaeb5954d55a993865f86cdbc6f059db6656291b59c1b8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash c5bccc509eaeb8cbd31ae08685463a21
c61c6c3cb8f12c8aad148266ac4c6db9b91835e5
df72ed0c7fc2534d41724c989f82c54a296e7f2940b5a5ca3ccc65d0b3c1b023
GET /harmonia_sans/harmoniasans_n4.73cf0589f7839ec88463a09f5335a2885467ed0c.woff2?h1=c2hvcDRraWRzLm5v&h2=c2hvcDRraWRzLW5vLmFjY291bnQubXlzaG9waWZ5LmNvbQ&hmac=01cf344a1d2db68a5feaeb5954d55a993865f86cdbc6f059db6656291b59c1b8 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: font/woff2
content-length: 21716
cf-ray: 795f3f2e1b03b4fa-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1306437
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 05:44:05 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/harmonia_sans/harmoniasans_n4.73cf0589f7839ec88463a09f5335a2885467ed0c.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: a9e50b77-572f-4a47-a853-91ee0bc7dbb2
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t82r7DzlqB90Id2PdjkbWe7pIfveYvDfaOFRqu9WtRm6zSasHtHylJeFyAO6KGYQz9gvKsDEN9XZlPaziaLqWB9WNjkx1Iuip97ZOJtbUd4Xb3eBObC%2BkwXHS8U9CpB%2B9goYA6w4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=45.541, imageryFetch;dur=45.149, cfRequestDuration;dur=7.000208, cfRequestDuration;dur=16.000032
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c8fb4c0284c06579b153d9857e1ca37d
a543135c9beb1f9f50c9233b1fc5896dcab10291
10226daebdf80d111440efabcb8d7866a8b3a826d94a36d411f169701f432035
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10226DAEBDF80D111440EFABCB8D7866A8B3A826D94A36D411F169701F432035"
Last-Modified: Tue, 07 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8070
Expires: Tue, 07 Feb 2023 23:48:26 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8f6e1acde186719017010ac50ac5af98
28f5d82700754406dff58caba949927b312756b8
61926f52a0cee2f15ca98fe772049e55680cc71e4246482c1a4f3edae9010432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61926F52A0CEE2F15CA98FE772049E55680CC71E4246482C1A4F3EDAE9010432"
Last-Modified: Sun, 05 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4474
Expires: Tue, 07 Feb 2023 22:48:30 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 13 kB IP
ASN #20940 Akamai International B.V.
Hash 301c455365344dbe52fed72242652924
0ccceb44d995ccdd0054a5b85efd82ed47c82c4a
5ac06178bafa5fdf8fbc8a2038966e07aca4a1c09f630c8af3e0e04edef8c03c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23BDDE3679064DB3B9D17C74FD86451BCDACDF79488F5256AEB5BFD1A348662"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4538
Expires: Tue, 07 Feb 2023 22:49:34 GMT
Date: Tue, 07 Feb 2023 21:33:56 GMT
Connection: keep-alive
assets.apphero.co/script_tags/220034_991735.js
403 Forbidden 955 B URL HTTP/2 assets.apphero.co/script_tags/220034_991735.js
IP
Hash 8a95b627681fcfc59e9eafe891db5921
1b3d8503ed543e0b6eca4b1e4b34a36d63a2aaf9
d3a62d24081f74b86c139f89975cdb8f8e77540023756d72f7fd8457ecd3f91a
GET /script_tags/220034_991735.js HTTP/1.1
Host: assets.apphero.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Tue, 07 Feb 2023 21:33:55 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yPx1ZtVEn_n7TKooBdwZvnanKn9YHUUbKeKO5clxu_gdkG2ky-rmbQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash b708cfc151eec6bd8dec7dfcb95f72e5
b974a49d78ed0f39bcefac8edce8ab249bb52d48
975b5bfeac376d1451ede42b26d37e022638a7c316336a3284261d58cafbae12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5291
Cache-Control: max-age=143730
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e23d8c-116"
Expires: Thu, 09 Feb 2023 13:29:27 GMT
Last-Modified: Tue, 07 Feb 2023 12:01:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
monorail-edge.shopifysvc.com/unstable/produce_batch
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 306
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://shop4kids.no
access-control-max-age: 86400
x-request-id: 379e9341-4b9c-4ac6-b780-d716f52c630c
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ntYyRRdYs7BoW5GTqg5L7AZeDBvJILA082TiPMMzxbDlH43ffLXCDWewmqa9o7oSMEIZCa9lueSw0dxy%2B3Jct%2FWsDsGUWbZUuwz66ODCfNP0QGcZuilLqGDl1Ft2kaLa15YOmrBC%2Bh5JnXD6FQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=167.999983
server: cloudflare
cf-ray: 795f3f2ec800b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
200 OK 6.1 kB URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Hash 5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Tue, 07 Feb 2023 04:04:59 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U_B-cbW-4qxtINKQFvBWY0IaExFhlOdSb_VPFVY_SXVJbsFFqjxHYA==
age: 62939
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 38da6a9ed845e3f6ebcb1d70dfb4357d
258b8248d3937cb1466c61b90e81afb5d4fc3c9d
66ac3f5da2932fc8defa5c22559d2601794a02562b99f99823d2570b101d79b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66AC3F5DA2932FC8DEFA5C22559D2601794A02562B99F99823D2570B101D79B6"
Last-Modified: Mon, 06 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Tue, 07 Feb 2023 22:25:00 GMT
Date: Tue, 07 Feb 2023 21:33:57 GMT
Connection: keep-alive
cdn.hextom.com/js/eventpromotionbar.js?shop=shop4kids-no.myshopify.com
200 OK 22 kB URL HTTP/2 cdn.hextom.com/js/eventpromotionbar.js?shop=shop4kids-no.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (65296), with no line terminators
Hash 46b1104d48ea43344919da879c54aaec
90eee40bd8d324f0cec82ce7f516bf416f276dfa
5b34687478b16270ed8f503498866a55618984af8d1aae38eff40351924e9af7
GET /js/eventpromotionbar.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: cdn.hextom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 21904
date: Tue, 07 Feb 2023 19:40:46 GMT
last-modified: Wed, 01 Feb 2023 21:34:56 GMT
etag: "46b1104d48ea43344919da879c54aaec"
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -srdNEZorNxSmMn9yMjQnUb2Mk1o0fb6ofQ0bvTwYsrAVLYTMh83fw==
age: 6792
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 1d263106a990fb594402b0ac703a6af0
bb0e26b6a35e3c00fe459bca438fe1688fb5cbb2
3b5e34d8b594d82f2e1a1625ccd6ed1ddca05528c4ccc9f53d416cac82c910b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4888
Cache-Control: max-age=150496
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e2598d-118"
Expires: Thu, 09 Feb 2023 15:22:13 GMT
Last-Modified: Tue, 07 Feb 2023 14:00:45 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 278
product-labels-pro.bsscommerce.com/js/product_label_log.js?shop=shop4kids-no.myshopify.com
200 OK 16 B URL HTTP/2 product-labels-pro.bsscommerce.com/js/product_label_log.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with no line terminators
Hash 92df6837954e8d6234dfed8f6c981f27
30adf7a3cccffe692ea57dcc53d7b1fcfd2d121a
b5e8db38fafcd2cda3cb0578f7e50fcc78669f1356fb157b50b9eb26fbfe2f5d
GET /js/product_label_log.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: product-labels-pro.bsscommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/javascript
content-length: 16
cf-bgj: minify
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
etag: "63be671a-10"
last-modified: Wed, 11 Jan 2023 07:36:58 GMT
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 4342
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C9QP3TAMJau8g9F6Ymg1BNYxhgterQww9K8O0vGjmpW%2FTMlLWAOQNQheXHESU1Rg6RQZCjsyPVgPTuj182GCog6zJcUNTWX%2BUnUFiCfYAI9EnBGQ%2B1JcDwQUyZY4fgCkzBtS%2BpUaCGdIBSGJY24zbdBy4Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 795f3f301941b4ee-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8f6e1acde186719017010ac50ac5af98
28f5d82700754406dff58caba949927b312756b8
61926f52a0cee2f15ca98fe772049e55680cc71e4246482c1a4f3edae9010432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61926F52A0CEE2F15CA98FE772049E55680CC71E4246482C1A4F3EDAE9010432"
Last-Modified: Sun, 05 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4473
Expires: Tue, 07 Feb 2023 22:48:30 GMT
Date: Tue, 07 Feb 2023 21:33:57 GMT
Connection: keep-alive
omnisnippet1.com/inShop/Embed/shopify.js?shop=shop4kids-no.myshopify.com
200 OK 999 B URL HTTP/2 omnisnippet1.com/inShop/Embed/shopify.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with very long lines (1192)
Hash e4bb3230f8695753e864cff315b2011c
6146062031f375fe41cd2372a540b84c4dac61ed
2a2ee0b44b79824885f0915242961eae3e4483a0abb2913c8542faa9e813388c
GET /inShop/Embed/shopify.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 12:50:13 GMT
etag: W/"63cfd405-50f"
expires: Tue, 07 Feb 2023 21:40:16 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 0
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 3221
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 795f3f2fd9580b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 49 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32755)
Hash d2d40a0b8e2a6ffc323a092169b77d12
b259b582f23af152d12c8d0e7410d8b879f16967
e69cb0a20b69afd56216fb043cba5e2c4f8da7f492dc6042c4bd53bb1061261c
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bf39c92e-8041-41c3-8775-78a5bf0d2416
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 03:58:02 GMT
cf-cache-status: HIT
age: 14315665
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JhM9B0CGkTWr6zq4o4gHEjwzdGjcYsEGdnSs2q17XRguKONhe5hYmw75Hhp2qu66PYgV8jLXFKn3qglp9hlSK8xgzeL%2BkpdnRethzv1k84T2MaGJlaYqR2%2BvMb%2FWZSfTOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=22.192, imageryFetch;dur=21.948, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 795f3f2cfb4cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/zahidsattarahmed/storeview/newtrackingscript.min.js?shop=shop4kids-no.myshopify.com
2.0 kB URL cdn.jsdelivr.net/gh/zahidsattarahmed/storeview/newtrackingscript.min.js?shop=shop4kids-no.myshopify.com
IP
File type gzip compressed data, from Unix\012- data
Hash 2c6d9a4f4619db6bc30b35fccd967dc9
ec4598bcfc04c70a3b8be5e8d31f4da6cd187a53
ccc49ef41b00bee85779f84c2faaa5dce29439f21734e4ac1cf460cb845f20fe
GET /gh/zahidsattarahmed/storeview/newtrackingscript.min.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ocsp.digicert.com/
200 OK 278 B IP
Hash b708cfc151eec6bd8dec7dfcb95f72e5
b974a49d78ed0f39bcefac8edce8ab249bb52d48
975b5bfeac376d1451ede42b26d37e022638a7c316336a3284261d58cafbae12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5291
Cache-Control: max-age=143730
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e23d8c-116"
Expires: Thu, 09 Feb 2023 13:29:27 GMT
Last-Modified: Tue, 07 Feb 2023 12:01:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/usf-boot.js?v=119653333735539233271657730544
200 OK 8.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/usf-boot.js?v=119653333735539233271657730544
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (14283), with CRLF, LF line terminators
Hash 2406952e44a86409ed2b49f785c6f3b5
de71d8f5989bf5f2bd2902f60b364b3954cbec64
2cb57c33e5e359f97773fbdf198bf7159d89ba5c296de97514814fe5694f4cfd
GET /s/files/1/0160/9003/8336/t/41/assets/usf-boot.js?v=119653333735539233271657730544 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/usf-boot.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: acad7338-57c3-4005-a9c0-12fccd7b40a3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Sat, 14 Jan 2023 07:35:00 GMT
cf-cache-status: HIT
age: 1696413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3RLELsIWC5mkMbHjIJVu67l90cUiMQqc78u2Nq9qZTFOWckMCpYq6Jyyld8vjrHSgegQ6cuCyQXboOgxAddycTC4aiFNsoVOMRHRlr8GKsQbHUTASDqrbFYQOpYS52kZSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=107.685, imageryFetch;dur=102.205, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 795f3f2cf9e21bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 77 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10292), with no line terminators
Hash 25f8b7b8f75022d8208fb38044873f34
eadff0f51260752b7d84725883d43bf6d470d5a7
49f023329c7f776f430d726341291bc23602ecb0017fe7dd04a258362b63ea51
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5b8840a0-6357-4555-9540-433e2a44fe49
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 04 Jan 2023 20:16:01 GMT
cf-cache-status: HIT
age: 1094199
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L2U8ogqXBozU4LDIuOwR%2BDbfbleK54su0ry%2F8onZghhVeOAYLX6I1y02YzYYz14fgjJCcGnjwdmkd8b5wRUIn6gv3lne10NfskzCAPXeB3zAmzlSdvlm6xgr0L2LRSNBgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=30.995, imageryFetch;dur=30.813, cfRequestDuration;dur=52.999973
server: cloudflare
cf-ray: 795f3f2ceb26b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
File type ASCII text, with very long lines (31034), with no line terminators
Hash aebfe79a43ab3b40d473082cb240bfe7
e176237cc68803a9dfc6ac7f5db919a6c8f4c5c3
a562e759047435340c5e9816df15a44f08f49c04482365e139a1591f1d1507ac
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13295
server: CloudFront
date: Tue, 07 Feb 2023 21:33:57 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Wed, 08 Feb 2023 20:40:12 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: GeneratedResponse from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3gzrmVBdVpQp_zXqLlkhjqyFr4OTMjxFWW4YwKDfJTCu8iYu9u8hew==
X-Firefox-Spdy: h2
cdn.instantbrandpage.lowfruitsolutions.com/db6e385d1b92a96b71f9ccb9d05aefab/brand-page-7bbe7c8eca4dff40a67179230b242025.js?shop=shop4kids-no.myshopify.com
200 OK 105 B URL HTTP/2 cdn.instantbrandpage.lowfruitsolutions.com/db6e385d1b92a96b71f9ccb9d05aefab/brand-page-7bbe7c8eca4dff40a67179230b242025.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with no line terminators
Hash 7bbe7c8eca4dff40a67179230b242025
1a47cd0976be9baf5bbd4474c28be63c9229513d
a557fa354489b9acabd0f0970fadd4aec4c7dc592e0237c9e1efc3e9d8ed9cfe
GET /db6e385d1b92a96b71f9ccb9d05aefab/brand-page-7bbe7c8eca4dff40a67179230b242025.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: cdn.instantbrandpage.lowfruitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 105
last-modified: Tue, 08 Feb 2022 01:16:50 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 07 Feb 2023 18:58:53 GMT
etag: "7bbe7c8eca4dff40a67179230b242025"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EG9b9tWjwhlS5T5_ZKPSCcAMVkGCXG_lHN_zmsFcNo5jhIxUTnUoAA==
age: 9305
X-Firefox-Spdy: h2
cdn.instantbrandpage.lowfruitsolutions.com/db6e385d1b92a96b71f9ccb9d05aefab/featured-slider-35eb460fa8c7439c19ede1901ffc41f3.js?shop=shop4kids-no.myshopify.com
200 OK 1.1 kB URL HTTP/2 cdn.instantbrandpage.lowfruitsolutions.com/db6e385d1b92a96b71f9ccb9d05aefab/featured-slider-35eb460fa8c7439c19ede1901ffc41f3.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash 35eb460fa8c7439c19ede1901ffc41f3
5464b1c25aba497aa5a865935cae725932687df1
52db7fe66b8d7c3c9a2714cad9437229e725d48c29ad0269a8ac62f8f06dc4af
GET /db6e385d1b92a96b71f9ccb9d05aefab/featured-slider-35eb460fa8c7439c19ede1901ffc41f3.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: cdn.instantbrandpage.lowfruitsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1146
last-modified: Tue, 08 Feb 2022 01:16:50 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 07 Feb 2023 18:58:53 GMT
etag: "35eb460fa8c7439c19ede1901ffc41f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lmKKzxQKWSF79BuJdlK1TA2Dgr4e0H2tuYfBvZ9OMvD09iT6gnL7VA==
age: 9305
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 6aa391bf8a1125e73378a40e2af14ed7
1e57373c96a473aac78c13c8c8667ab824739eee
79b3ef0eb2cb343d6ce3d7759aa3bdf46f2fb20fdfba401bead4425e07e490f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Last-Modified: Tue, 07 Feb 2023 20:39:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash db349d3f227da2a21a20c0aedd64dcc7
7396b83d1b31d4193c943dadf3c3869e3a62261f
352b987c7d7f5fc458a190939ab1e4bf1b96472ae2b2c8ad49c6968adf2cfefc
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 21:33:57 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "355523CCAE1A0E9F6B7204315C3752ED7732C9D6"
Expires: Wed, 08 Feb 2023 09:00:00 GMT
Last-Modified: Tue, 07 Feb 2023 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1301
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795f3f311f6ab52d-OSL
widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/main.js
200 OK 17 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/main.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (56091)
Hash b0eef1ccd74c312f915d5d3eb5ec8380
142da953075c3dc980faf5f417c53f19cfaa3f6b
06ffdc7eca6db340ae4bdcdb962c31ec5ff96c6ab102db5bca41d90c721cc8d4
GET /trustboxes/5613c9cde69ddc09340c6beb/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5aa550a8a707cb000171708e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 16933
date: Tue, 07 Feb 2023 17:04:19 GMT
last-modified: Tue, 04 Oct 2022 10:37:00 GMT
etag: "b0eef1ccd74c312f915d5d3eb5ec8380"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HXhhGb1vqZQES8xo7-zdHKSpZoummB6iDn9-GXhG_ZDNeDrLgQQ7wA==
age: 16179
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9e64e0728a2c6386aa1f4e696177f2f6
e9a16a38efa7401153fa24509c1a9bb0cd059d78
451fa4b8801162ce911c5ae7cedc94ad91f5dcca37cb83c82e6ab1e21fe4fbf4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128674
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e211d1-1d7"
Expires: Thu, 09 Feb 2023 09:18:31 GMT
Last-Modified: Tue, 07 Feb 2023 08:54:41 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0Yb49eQIgqDlwcnzS4BD3v5ci4WOp6MUyCq-T2chYY65hP73DpRy5A==
Age: 1430
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3a0eb0c7931ca66c2af889f1981658fa
d8f00f82bd2318e2d484509240d52bff1b37dd4c
fc9b2f831016a12ff513c1e6147bc0ef76484ce188874da512fbee3abbb0cd61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC9B2F831016A12FF513C1E6147BC0EF76484CE188874DA512FBEE3ABBB0CD61"
Last-Modified: Mon, 06 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3073
Expires: Tue, 07 Feb 2023 22:25:10 GMT
Date: Tue, 07 Feb 2023 21:33:57 GMT
Connection: keep-alive
api.static.kiwisizing.com/scriptVersion.json
200 OK 17 B URL HTTP/2 api.static.kiwisizing.com/scriptVersion.json
IP
ASN #34989 ServeTheWorld AS
File type JSON data\012- , ASCII text, with no line terminators
Hash 4076cb68063614e8b4c889070bf2bde4
c86d800d6c7fb79c51ee87a89b63b2eeb351c4d2
770a8759421687f3b9411e1cc72036fdaa4534ba80d924732ea56bf6dfea055c
GET /scriptVersion.json HTTP/1.1
Host: api.static.kiwisizing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/json; charset=utf-8
content-length: 17
server: BunnyCDN-NO1-830
cdn-pullzone: 95579
cdn-uid: 4bb717c0-a7ed-41ef-8b3c-612af69d884d
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Origin, values, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET,PUT,POST,DELETE
access-control-allow-origin: *
access-control-expose-headers: kiwi-sizing-token
cache-control: public, max-age=2592000
etag: W/"11-yG2ADWx/t5xR7oeom2Oy7rNRxNI"
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 19:08:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3a72255a14578bf11a715cea466a908b
cdn-cache: HIT
X-Firefox-Spdy: h2
feed.omegacommerce.com/js/init.js?shop=shop4kids-no.myshopify.com
200 OK 399 B URL HTTP/2 feed.omegacommerce.com/js/init.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with very long lines (399), with no line terminators
Hash c0b32bd2488c1cbc076a64eaedad0100
2987530c4907fff2cd8400827c9d9f5ca9b18bdb
da73fbce38591b635f8d763616dd8f84251d46ac91c9247d7fa3e1dbe84b87dc
GET /js/init.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: feed.omegacommerce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: text/plain; charset=utf-8
content-length: 399
set-cookie: omega_feed=a59f007fbf3384ccc33cc586d5d348f0; Path=/; Max-Age=604800
vary: Origin
x-proxy-node: 0
x-request-host: us1_0
x-request-id: e91ef967-d85f-4ff2-bb50-e590efbb09e4
x-version: v1.6.5_v1.13.28
expires: Wed, 07 Feb 2024 21:33:57 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
200 OK 8.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1
IP
File type ASCII text, with very long lines (19473), with no line terminators
Hash 4c22bd089a105c68cc7cd0a6e5390056
a22676675f6a1200420b10e45472e42cda1021cb
93e74cd9d7d7c500587e6b6bb554fdcfe91bd886c90f7560d3505d59516f33b8
GET /onsite/js/runtime.5e89fbad15ad6bc50dbb.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eZAB3eC702nxkpzhANCuu4QTVE8lWyGPn9+EElQlppit9M8T6T1TM5VEMwb2jJ6thuIa4hj3dtzraPZ2Yu8Z+w==
x-amz-request-id: JR283Q7EHGZPD3J0
last-modified: Fri, 03 Feb 2023 17:28:44 GMT
etag: "f27ddd47bfc9beb64b7d3c1aad544c28"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: .7alrscAaTnWmEs8mvC2QYSnwfAI..vu
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 21:33:57 GMT
age: 1054
x-served-by: cache-lga21955-LGA, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 645
vary: Accept-Encoding
content-length: 8049
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.be6202fcdf1421eba2d0.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.be6202fcdf1421eba2d0.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36158), with no line terminators
Hash eaab6c0518bfed32d8f80dc6006ea0e9
3c919cc5cc0edfc3aa67f9330e997c119b1cd4e4
25ad30c3c1be83c771450d6c20085f46caad75611461b2adfd9281e5552699d2
GET /onsite/js/sharedUtils.be6202fcdf1421eba2d0.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1HzDVK13zfGIWSjYYKpYIBE3B+gcgtdt2Gvyu9S2fmmHxUbuk3H5knLurzek/1VQ2ehFEWfYmBY=
x-amz-request-id: 3ZFTZ05BAMBGWA3E
last-modified: Tue, 07 Feb 2023 17:20:58 GMT
etag: "f6d94db8f3e550cd5d8120c855e2dc1d"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: FOaB16OKa2dvRBhZ3uzHu8DI3tr.nzKO
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 21:33:57 GMT
age: 1054
x-served-by: cache-lga21971-LGA, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 739
vary: Accept-Encoding
content-length: 13982
X-Firefox-Spdy: h2
s3.eu-west-1.amazonaws.com/production-klarna-il-shopify-osm/df9e9749fad4029c418fcebdee2381d9e8d1b88c/shop4kids-no.myshopify.com-1646062743978.js?shop=shop4kids-no.myshopify.com
200 OK 1.8 kB URL HTTP/1.1 s3.eu-west-1.amazonaws.com/production-klarna-il-shopify-osm/df9e9749fad4029c418fcebdee2381d9e8d1b88c/shop4kids-no.myshopify.com-1646062743978.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with very long lines (2930)
Hash 28f9e8dc5728d012d59f7b1b95bafff0
b9a42624701d6d6fb74f316a58d2c4e2ff61dab1
167ad5c261faf75c9e57de4692b2ea1269d561f402748473aef152e31a0f7aa0
GET /production-klarna-il-shopify-osm/df9e9749fad4029c418fcebdee2381d9e8d1b88c/shop4kids-no.myshopify.com-1646062743978.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9AwI/Ff/gKKFmiurlbW4Y2lWjXrb1HutDqMhnxuxEkplI3z3ol55SB+u4xrVrJ3mR85AP3LRZGA=
x-amz-request-id: Y2F5FYH4265F65Y5
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Mon, 28 Feb 2022 15:39:04 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "28f9e8dc5728d012d59f7b1b95bafff0"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1759
static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
200 OK 11 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1
IP
File type ASCII text, with very long lines (28184), with no line terminators
Hash 9947b9a0c514938c051ff50787786915
d78e9bb27f688655db15ad8ccc5325485e0fa410
73393d7427c388e9784f76014b52851f2d3f17d19308b8f6c6a70eb4afb8748d
GET /onsite/js/fender_analytics.655ce7424169cb36416e.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0ad6sXmXMHiFUp4bdjmrAmBwFWJ1GaCj6pLMFwLo6bZqgTxKuIcly7KnmVyuEfGMLgr3EJYE/tE=
x-amz-request-id: BEFH96F66KX7MCC2
last-modified: Fri, 03 Feb 2023 16:02:43 GMT
etag: "2918e6090a854372153e5cf84e3da824"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: DA49kfUB0O0s32Ljp5UGbAPIecnc3kbk
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 21:33:57 GMT
age: 1054
x-served-by: cache-lga21925-LGA, cache-bma1673-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 649
vary: Accept-Encoding
content-length: 10897
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 6aa391bf8a1125e73378a40e2af14ed7
1e57373c96a473aac78c13c8c8667ab824739eee
79b3ef0eb2cb343d6ce3d7759aa3bdf46f2fb20fdfba401bead4425e07e490f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Last-Modified: Tue, 07 Feb 2023 20:39:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
invitejs.trustpilot.com/tp.min.js
200 OK 4.2 kB URL HTTP/2 invitejs.trustpilot.com/tp.min.js
IP
Hash 3e7059e89b33d6d0d9f3b480d96520a3
a53f98931b1bb17193ae5a7b64b9984361abbd9a
914ddba657f6cc6f14ac36e8cf32eff22b7662d5305179604f1f060ec2d86786
GET /tp.min.js HTTP/1.1
Host: invitejs.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 28 Nov 2022 07:41:17 GMT
content-encoding: gzip
date: Tue, 07 Feb 2023 03:58:26 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i90mR3fg_KfgAYpDVLstsFs58GQh98QfM0lNjyP-85odqFGOQxOk_Q==
age: 63331
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=nb-NO&styleHeight=100%25&styleWidth=100%25&theme=light&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&referrer=https%3A%2F%2Fr.srvtrck.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5aa550a8a707cb000171708e&widgetId=5613c9cde69ddc09340c6beb
204 No Content 25 kB URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=nb-NO&styleHeight=100%25&styleWidth=100%25&theme=light&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&referrer=https%3A%2F%2Fr.srvtrck.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5aa550a8a707cb000171708e&widgetId=5613c9cde69ddc09340c6beb
IP
Hash 78229148a6c59ad3487cb3870fbbd4d7
23b1bdaed45ea8ea5e46d52d9e80a363d68d5cf5
60fc0edaa7de9afd08517546242582467a5f1b63b6bb897d5771ac6b4334d92b
GET /stats/TrustboxImpression?locale=nb-NO&styleHeight=100%25&styleWidth=100%25&theme=light&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&referrer=https%3A%2F%2Fr.srvtrck.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5aa550a8a707cb000171708e&widgetId=5613c9cde69ddc09340c6beb HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5aa550a8a707cb000171708e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Tue, 07 Feb 2023 21:33:56 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JMUx1dHithHwRLHF3HFya23x6Hep739HvpXT1Lea6aqN8I6WNCNW_g==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash df6f9c77650a0a71ef7373b2094cff53
074d5ba4bb1bc340553e1498c34e15e0ebe2b6b6
d32d112b3a44075f7448b237eeb1a6d15018296975d1812e03a65e807b44a05a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125891
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e1f307-1d7"
Expires: Thu, 09 Feb 2023 08:32:08 GMT
Last-Modified: Tue, 07 Feb 2023 06:43:19 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9-7aR3C4wPwrIs9giZ0FLgXg35wGzuCv6BPGyKaAqDjEEzwByy4sSQ==
Age: 6529
ocsp.digicert.com/
200 OK 471 B IP
Hash 878940fb0bb1730fbd1f9d21ac21eb01
0235e184f27cd464e82ccd586f4f1806b1fc57f5
c282d06fad44cefcc695a283a0d6e8cca9bc185f38c25ba2ce479b000d17993a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 590
Cache-Control: max-age=120303
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e1f467-1d7"
Expires: Thu, 09 Feb 2023 06:59:00 GMT
Last-Modified: Tue, 07 Feb 2023 06:49:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
widget.trustpilot.com/trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5aa550a8a707cb000171708e&locale=nb-NO&reviewsPerPage=0
400 Bad Request 112 B URL HTTP/2 widget.trustpilot.com/trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5aa550a8a707cb000171708e&locale=nb-NO&reviewsPerPage=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ae32493f46469329a4077ebfb3493d9b
4a469c1c8c530121acc182e663649326751461e6
fab9351248eefdf3c2145b7dc4eb99980fdb667f21061ba97ef62640902cee77
GET /trustbox-data/5613c9cde69ddc09340c6beb?businessUnitId=5aa550a8a707cb000171708e&locale=nb-NO&reviewsPerPage=0 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5613c9cde69ddc09340c6beb/index.html?templateId=5613c9cde69ddc09340c6beb&businessunitId=5aa550a8a707cb000171708e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 400 Bad Request
content-type: application/json; charset=utf-8
content-length: 112
cache-control: public,max-age=1800
content-encoding: gzip
date: Tue, 07 Feb 2023 21:33:56 GMT
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3KHoYeFccGehtsbP1cTDp3xDHMCAy7k78j55iCQ7gXDkYQ8je8-j8A==
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
200 OK 1.8 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1
IP
File type ASCII text, with very long lines (3927), with no line terminators
Hash dad1cfca7e143c6f971f9489945f5e4a
e7df2d2e32ab7bf4642d535c12b22fe700ecef78
bd1e924b8e386b9c009cd573e58318ae3cc3cf7c846022027d269b0d4ac98428
GET /onsite/js/static.18cfb961fcdbcf83a5c0.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cidyFX9R21NtX9uwGBs6mQVv2UQoeiERHmmJg4FpaYUT9NhNCxnaQYj/yfFMLtVKqSmFIRsz3Nc=
x-amz-request-id: E6MHX49K8258SD1W
last-modified: Fri, 03 Feb 2023 16:55:57 GMT
etag: "7956ff796e65e61f53fd9de4075e1360"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: gEtCTjDdAr9iUO0b1dPiDcxMzmi647ro
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Tue, 07 Feb 2023 21:33:57 GMT
age: 1054
x-served-by: cache-lga21920-LGA, cache-bma1673-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 652
vary: Accept-Encoding
content-length: 1820
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 878940fb0bb1730fbd1f9d21ac21eb01
0235e184f27cd464e82ccd586f4f1806b1fc57f5
c282d06fad44cefcc695a283a0d6e8cca9bc185f38c25ba2ce479b000d17993a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5692
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Last-Modified: Tue, 07 Feb 2023 19:59:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/cm/i?pid=3ef0114d-6bb9-45e2-b351-38ddde4329ba&u_scsid=20b227ef-2b9d-4424-9de6-5942c67b1d73&u_sclid=4a9773df-1e71-44e0-909a-5cfff907f65e
200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=3ef0114d-6bb9-45e2-b351-38ddde4329ba&u_scsid=20b227ef-2b9d-4424-9de6-5942c67b1d73&u_sclid=4a9773df-1e71-44e0-909a-5cfff907f65e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=3ef0114d-6bb9-45e2-b351-38ddde4329ba&u_scsid=20b227ef-2b9d-4424-9de6-5942c67b1d73&u_sclid=4a9773df-1e71-44e0-909a-5cfff907f65e HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
200 OK 68 B IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 516
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
access-control-allow-origin: https://shop4kids.no
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBBw0AMAgAMEUkjG+H5wLxawNfj5OCYArITkOZL0hHKBNtFt09cw1UYz/82og6xTIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
200 OK 68 B IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 509
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
access-control-allow-origin: https://shop4kids.no
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIQgDwIlIoHyl67wSp2B47+pyC8dNG2mfmvYjYFlkROuiz0ysopwra/wBefWeHjIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 4
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 878940fb0bb1730fbd1f9d21ac21eb01
0235e184f27cd464e82ccd586f4f1806b1fc57f5
c282d06fad44cefcc695a283a0d6e8cca9bc185f38c25ba2ce479b000d17993a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 590
Cache-Control: max-age=120303
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:57 GMT
Etag: "63e1f467-1d7"
Expires: Thu, 09 Feb 2023 06:59:00 GMT
Last-Modified: Tue, 07 Feb 2023 06:49:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-02-07T21&brandID=5d6ffa928653ed0357cf5630&displayType=popup,embedded
200 OK 2 B URL HTTP/2 forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-02-07T21&brandID=5d6ffa928653ed0357cf5630&displayType=popup,embedded
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /REST/forms/v1/renderedForms?v=2023-02-07T21&brandID=5d6ffa928653ed0357cf5630&displayType=popup,embedded HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop4kids.no/
Origin: https://shop4kids.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/json
content-length: 2
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=600, public
expires: Tue, 07 Feb 2023 21:43:17 GMT
last-modified: Tue, 07 Feb 2023 21:33:17 GMT
x-envoy-upstream-service-time: 2
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 40
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 795f3f32cb1fb512-OSL
X-Firefox-Spdy: h2
because-scripts.s3.us-east-2.amazonaws.com/prod/because-widget/widget.js?shop=shop4kids-no.myshopify.com
200 OK 551 B URL HTTP/1.1 because-scripts.s3.us-east-2.amazonaws.com/prod/because-widget/widget.js?shop=shop4kids-no.myshopify.com
IP
Hash ef5240c94fed3baff3ddfab433f8f3f4
1209fdf3832c5786fea0491ddc60bcff5d2f2c91
876f712bc664e7f0382d2da9ae239e754135a1a23ad205cd9ab86e904ee0f238
GET /prod/because-widget/widget.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: because-scripts.s3.us-east-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: JiNyV3ILBfS2Fi1+6+2odOHkTNVEBQyQgpiT1hrjNEOF5eNIAHK0vkvgMEnsoqxVlNM9b+AMmtSfztdGzvuDmA==
x-amz-request-id: Y2F5632Q46GDSYEQ
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Tue, 28 Dec 2021 16:50:57 GMT
ETag: "ef5240c94fed3baff3ddfab433f8f3f4"
x-amz-version-id: xB6xr9gtwlL9ZVn8ahCBX2HHzvpQ93Rv
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 551
production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/df9e9749fad4029c418fcebdee2381d9e8d1b88c/906.index.js
200 OK 5.2 kB URL HTTP/1.1 production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/df9e9749fad4029c418fcebdee2381d9e8d1b88c/906.index.js
IP
File type ASCII text, with very long lines (14710), with no line terminators
Hash b0f3d5ac9d75b108e178d2da73791f09
0c977d3b573a049b1dbee7155ca2669df4aeb067
0de45ee933df80e8d122ee6ed123c181d004397fd4fe57d1bcda5c612988f333
GET /df9e9749fad4029c418fcebdee2381d9e8d1b88c/906.index.js HTTP/1.1
Host: production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: HmOXUZwJ5yxszhdw8evX/eTIRgNEPS7ag7OTQVrgAAlnTm/RzH89VPPS3UA7adIx15SH4DVyEwRFwrk+kR2+NQ==
x-amz-request-id: Y2F3ZE692YKE07A3
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Mon, 28 Feb 2022 15:36:58 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "b0f3d5ac9d75b108e178d2da73791f09"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 5209
production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/df9e9749fad4029c418fcebdee2381d9e8d1b88c/258.index.js
200 OK 7.3 kB URL HTTP/1.1 production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/df9e9749fad4029c418fcebdee2381d9e8d1b88c/258.index.js
IP
File type ASCII text, with very long lines (27997)
Hash b7c0eb5dbc0c7e9f220f476edc2caf97
caedc46a175d4d35a490b7850a695fcdbce712bc
177f65b0fd0791cdad43324cf967f6e4cf525b73b48cf0587152b6bcf902ba1a
GET /df9e9749fad4029c418fcebdee2381d9e8d1b88c/258.index.js HTTP/1.1
Host: production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: tI6B6h7QicgO5QFv3TbS4iZ+RF3Q+sG0LIkN1IXXeVHcYO9SywscKtAwJn8fuJw5VhgqXbBLwi2u0CLaVNwMmQ==
x-amz-request-id: Y2FFN6X9NCBQQYG9
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Mon, 28 Feb 2022 15:36:58 GMT
x-amz-expiration: expiry-date="Wed, 01 Mar 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "b7c0eb5dbc0c7e9f220f476edc2caf97"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 7290
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8239e602a53219d2053bff77c15d9057
ae1ebec8d21a909a3a9d944f7dab6708149ffa60
9e16a313c1c380d041e73aa69d62bfcb7699003af8e99ca6cf2052ac5dff14ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E16A313C1C380D041E73AA69D62BFCB7699003AF8E99CA6CF2052AC5DFF14FF"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15045
Expires: Wed, 08 Feb 2023 01:44:42 GMT
Date: Tue, 07 Feb 2023 21:33:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8239e602a53219d2053bff77c15d9057
ae1ebec8d21a909a3a9d944f7dab6708149ffa60
9e16a313c1c380d041e73aa69d62bfcb7699003af8e99ca6cf2052ac5dff14ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E16A313C1C380D041E73AA69D62BFCB7699003AF8E99CA6CF2052AC5DFF14FF"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15042
Expires: Wed, 08 Feb 2023 01:44:39 GMT
Date: Tue, 07 Feb 2023 21:33:57 GMT
Connection: keep-alive
because-scripts.s3.us-east-2.amazonaws.com/prod/shim/app.js?shop=shop4kids-no.myshopify.com
200 OK 52 kB URL HTTP/1.1 because-scripts.s3.us-east-2.amazonaws.com/prod/shim/app.js?shop=shop4kids-no.myshopify.com
IP
File type ASCII text, with very long lines (51713), with no line terminators
Hash f3695c2b39c577da72fe1c5aba0740b3
295f513b448f52b35d0e9a7a35d518d3b680d9f1
577a37fac1488eef8b2f09b94b7b6b1b152361b9a451c2cc9fcad4a746a7c609
GET /prod/shim/app.js?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: because-scripts.s3.us-east-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uv+v502EMsbDBANHavSIVBbNsCKUGOGkcn8EkS918+G9l1SfxXhRxDTc8VrP1wPywCHXXhdpZVHSL89LKTdZZg==
x-amz-request-id: Y2F3295J6FX5QJHV
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Tue, 08 Nov 2022 03:54:01 GMT
ETag: "f3695c2b39c577da72fe1c5aba0740b3"
x-amz-version-id: pmCyTWNFcDxaXh7JneL6KTiN8kBojQLX
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 51713
productview.optymyze.io/pv/public/storepagevisit
200 OK 0 B URL HTTP/1.1 productview.optymyze.io/pv/public/storepagevisit
IP
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pv/public/storepagevisit HTTP/1.1
Host: productview.optymyze.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,access-control-max-age
Referer: https://shop4kids.no/
Origin: https://shop4kids.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 21:33:57 GMT
Server: Apache/2.4.29 (Ubuntu)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
Allow: POST
Cache-Control: no-cache, private
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
epb.hextom.com/epb_get_bars?shop=shop4kids-no.myshopify.com
200 OK 51 B URL HTTP/2 epb.hextom.com/epb_get_bars?shop=shop4kids-no.myshopify.com
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 001ab1af82f7fdcc8609790bcd6072ce
b12194b4ea4e8aeed6b8ef02fe920f83b21ff908
13de291769d9d69ddc145d3e8076931d5d3ef6f194a56b5f7bad9ff1382f4052
GET /epb_get_bars?shop=shop4kids-no.myshopify.com HTTP/1.1
Host: epb.hextom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/json
content-length: 51
server: nginx/1.20.0
vary: Accept-Language, Origin, Cookie
content-language: en
access-control-allow-credentials: true
access-control-allow-origin: https://shop4kids.no
X-Firefox-Spdy: h2
productview.optymyze.io/pv/public/storepagevisit
200 OK 60 kB URL HTTP/1.1 productview.optymyze.io/pv/public/storepagevisit
IP
ASN #14061 DIGITALOCEAN-ASN
Hash 79ead1e97f5ddc9bbe64f79c885668fa
5fa9cbccec093bb3389d09b69e6ed6728144e4b1
a51a597ad956035f129d03af9cb89dd737c5a050ba537b038267bc6f0e7678a7
POST /pv/public/storepagevisit HTTP/1.1
Host: productview.optymyze.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: Origin, X-Requested-With, content-type
Content-Length: 184
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 21:33:57 GMT
Server: Apache/2.4.29 (Ubuntu)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ik1SVnRLTHM4ZEtBcVJya2k4T2hvbVE9PSIsInZhbHVlIjoiVFVrQnNNc0tsVFBSVUt6V0ZCdEVjQ0tockZpejZrK3dlMkd3WGtuZFlqekxmRTVEVE1VXC85N09Ta1BwRkJPczMiLCJtYWMiOiJmMGI5NDg1MmJiODBmMDFiOWI1ZTFmNjdhMWQ3MzU3MWVhNjJiMDYwZjU0ZTg4ZTU0YTE5ZTRkNWMwNWI2YzNkIn0%3D; expires=Tue, 07-Feb-2023 23:33:58 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IjlmamNsUzZZWWdWYUFPTE5GdGsxWEE9PSIsInZhbHVlIjoiN3owWkJwbmVaUTZzM291T000TVRXYlwvejJOb1RHUTc4YTdTRzNiaFl5UmF0aDMrTlpJWVQ0M0J0c1IwN3VNY2YiLCJtYWMiOiIxNGMzMzJkOTBiYWYyMzIxZjg1Y2I1MjZkNTA0YTA2YTViN2YwODY5YTcyMjk4NTM5NmNmNjQ3ZWU0M2E0YTkwIn0%3D; expires=Tue, 07-Feb-2023 23:33:58 GMT; Max-Age=7200; path=/; httponly
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=shop4kids.no&shopType=shopify&shopID=16090038336
200 OK 30 kB URL HTTP/2 forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=shop4kids.no&shopType=shopify&shopID=16090038336
IP
File type ASCII text, with no line terminators
Hash 6b1cd4914aa561c8075f5b4ae957e464
4dc008c4e2e0ed0b099cf9a76998360aceca780b
2bf326a1c1e8b59a31c101ea34cb7bf9864a848d1b55b1e0331f62df2cb114de
GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=shop4kids.no&shopType=shopify&shopID=16090038336 HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Tue, 07 Feb 2023 21:33:17 GMT
x-envoy-upstream-service-time: 6
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 40
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 795f3f315cb7b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash bddec541dc8351ebddb5ca7f61241338
959e3c822a04150985f9acadbdc9ca2f3cb92bf6
f69366035e04ab80109bf79f6cedf3615f325707bedc87cc0301798b54156a9d
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Tue, 07 Feb 2023 19:47:46 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nByNgz9yn3F6Xox9WmAAaHxN5PQUZzGzse9QUuuHFtZAB8fusIpvHQ==
Age: 6372
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash bddec541dc8351ebddb5ca7f61241338
959e3c822a04150985f9acadbdc9ca2f3cb92bf6
f69366035e04ab80109bf79f6cedf3615f325707bedc87cc0301798b54156a9d
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Tue, 07 Feb 2023 19:56:11 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q7MlRbf5dC9z2_oWZHjlkGBHTNUGVzjhNmkpxLgyJL4pfS5MwbG5lg==
Age: 5867
ocsp.r2m01.amazontrust.com/
200 OK 40 kB URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 46fe51c7542c7307f3d49a3939d163b7
cebfc5d5727f5ab69d2cf5a1f42c35d971f2fae7
631aa424ffe259ab38a22bcde96d892417e835eaf44ab48ec2a68567045b0647
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 21:33:58 GMT
Etag: "63e272f2-1d7"
Last-Modified: Tue, 07 Feb 2023 19:46:58 GMT
Server: ECS (dcb/7F17)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VKkTXdCCDNZ7h8BfE79Gg3akSe69GXAoqoATQhlxfzu4F9OikJl1FA==
Age: 6420
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash bddec541dc8351ebddb5ca7f61241338
959e3c822a04150985f9acadbdc9ca2f3cb92bf6
f69366035e04ab80109bf79f6cedf3615f325707bedc87cc0301798b54156a9d
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154343
Date: Tue, 07 Feb 2023 21:33:58 GMT
Etag: "63e272f2-1d7"
Expires: Thu, 09 Feb 2023 16:26:21 GMT
Last-Modified: Tue, 07 Feb 2023 15:49:06 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1Wr5bmTVenRFNOgYgeh31Z_ccePIhrk-a-6udZ7HSrwNEZMxRa4u_w==
Age: 2235
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 07 Feb 2023 19:44:06 GMT
expires: Tue, 07 Feb 2023 21:44:06 GMT
cache-control: public, max-age=7200
age: 6592
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eu-library.klarnaservices.com/lib.js
200 OK 13 kB URL HTTP/2 eu-library.klarnaservices.com/lib.js
IP
File type ASCII text, with very long lines (40830), with no line terminators
Hash a478cab725df51a512052050a2d0be35
feadd585c581f916b72eb5f552458c73eabad77a
3e974da64722ad79422d56bd350f8cd29f95d2973c4ff57f42bdeae143d2241e
GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 03 Feb 2023 09:46:25 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 07 Feb 2023 08:14:06 GMT
cache-control: max-age=86400
etag: W/"7c169e959562416b3981a43343630ab6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nd7IddmgU7QcsM7bT_U6e-C3xW3HR9lAARN9kJ9ZHqmRAiYShLH9gw==
age: 47991
X-Firefox-Spdy: h2
prod-app.because-intelligence.com/track/page_view
204 No Content 20 kB URL HTTP/2 prod-app.because-intelligence.com/track/page_view
IP
Hash 5d8829538fd62ca0d87fb2df22312a04
3833b09b15f9b9828f1a1c59ef124657a00086bd
f73be0be007a7960a39838921343ffe440e46894bee8616383eb152d10954202
OPTIONS /track/page_view HTTP/1.1
Host: prod-app.because-intelligence.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://shop4kids.no/
Origin: https://shop4kids.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 07 Feb 2023 21:33:58 GMT
server: nginx/1.20.0
access-control-allow-headers: Origin,Content-Length,Content-Type
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD,OPTIONS
access-control-allow-origin: *
access-control-max-age: 43200
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&fmt=3&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1
400 Bad Request 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&fmt=3&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/viewthroughconversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&fmt=3&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 21:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/plain; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 07-Feb-2023 21:48:58 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5642
Cache-Control: max-age=152673
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:58:31 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 30 kB IP
Hash 713d4a2384eb6bf0917a0c0395b11436
15bf05bb7b2d9045614ad1637d4bf75189a3bae2
f18731025f0ed65b0381f32bcffc74e4c92941f45ecadc6aae3e53ad401ffe8e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2387
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Last-Modified: Tue, 07 Feb 2023 20:54:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 314
www.google.com/pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 21:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash c6d6a50397529cc18b52f26bd31b2fa4
760f7d17bd0ebf89522a0b73afc0489480df703d
d9f424ac0748fdd72673852c67d612efb1c8e17855fe862a6cdd1c44da75e9d2
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "c6d6a50397529cc18b52f26bd31b2fa4"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: zhqBIBb4+JKQt8tHADRLhjLjCbFCqCQfA/kwoVPnX7PJbAB2HRNCja2759NZN4vDZZELXOri/LxA0xZDEQb8Xg==
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 07 Feb 2023 21:33:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5642
Cache-Control: max-age=152673
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:58:31 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prod-app.because-intelligence.com/track/page_view
200 OK 15 B URL HTTP/2 prod-app.because-intelligence.com/track/page_view
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST /track/page_view HTTP/1.1
Host: prod-app.because-intelligence.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 417
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/json; charset=utf-8
content-length: 15
server: nginx/1.20.0
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&gjid=563273318&_gid=1178181795.1675805690&_u=YGBAgEABBAAAAEgCIAB~&z=1734466400
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&gjid=563273318&_gid=1178181795.1675805690&_u=YGBAgEABBAAAAEgCIAB~&z=1734466400
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&gjid=563273318&_gid=1178181795.1675805690&_u=YGBAgEABBAAAAEgCIAB~&z=1734466400 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://shop4kids.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 07 Feb 2023 21:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/815825333/?random=1675805688762&cv=11&fst=1675805688762&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&label=EjGICOv_ns8BELWDgoUD&tiba=Shop4kids.no%20%7C%20Kj%C3%B8p%20merke%20barnekl%C3%A6r%20og%20babykl%C3%A6r%20onlie&hn=www.google.com&frm=0&url=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&ref=https%3A%2F%2Fr.srvtrck.com%2F>m_ee=1&auid=945154925.1675805689&data=event%3Dpage_view%3Bpage_path%3D%2F&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop4kids.no/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 21:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&_u=YGBAgEABBAAAAEgCIAB~&z=309323137
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&_u=YGBAgEABBAAAAEgCIAB~&z=309323137
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-115309726-1&cid=620102582.1675805690&jid=1844284714&_u=YGBAgEABBAAAAEgCIAB~&z=309323137 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 21:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prod-app.because-intelligence.com/campaigns/fetch
200 OK 20 kB URL HTTP/2 prod-app.because-intelligence.com/campaigns/fetch
IP
File type JSON data\012- , ASCII text, with very long lines (57101), with no line terminators
Hash d439e913878c3368600bdd8047766f5b
1cd358f63411925f5992f1f8c5c5d93cadc28068
4aa57ff0ffa5eaacf036d670fe24c2b87c06dd73dfb9666e2378dcc6af57f898
POST /campaigns/fetch HTTP/1.1
Host: prod-app.because-intelligence.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 244
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/json; charset=utf-8
server: nginx/1.20.0
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690210&dep=5%2CEVENT_TAGS_ABSENT
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690210&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690210&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVltVTJZakF4WldJdFpURXpOQzAwTVRBeUxUZ3dZamN0WVRKa01tVmtaRGcyTVdaag
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://shop4kids.no
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 2221060717808731
date: Tue, 07 Feb 2023 21:33:58 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675805638.32e41217
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675805690207&dep=2%2CPAGE_LOAD
200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675805690207&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%7D&cb=1675805690207&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpURXdZemM1TWpNdE1UTXdNUzAwTnpCaUxUZzFOV1l0TnpJNE1tRXlOMkV3WkRkbQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://shop4kids.no
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 375
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 2043838339877692
date: Tue, 07 Feb 2023 21:33:58 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675805638.32e41229
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675805690211
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675805690211
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613086121048&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675805690211 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 6769885918079241
date: Tue, 07 Feb 2023 21:33:58 GMT
akamai-grn: 0.274f2417.1675805638.32e41348
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690319&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690319&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=PageVisit&ed=%7B%22np%22%3A%22shopify%22%2C%22eventID%22%3A%222dcd8755-EC44-497C-64B5-C7B200921B5B%22%7D&tid=2613086121048&cb=1675805690319&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22shopify%22%2C%22shopify_y%22%3A%22a1419a2b-42f0-465c-bbe1-f029619786e7%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978%22%2C%22ref%22%3A%22https%3A%2F%2Fr.srvtrck.com%2F%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22e9706407%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 3736173064860565
date: Tue, 07 Feb 2023 21:33:58 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZaRDg5Y0FtUHRLSHJiaE9IaWNOZFovSE1qemdNbXlMNnpDTmVaVmlLNWEwVlJHTG9wOGcrS1I5dUhOS2dhOEdSRFFyTkM3L0VxTFI1OVZXUjlaSkdnRWRFZmY5WVVoM3hGUnhBN2xxYmtHaz0mMFpDbWpxb2ZVaEI3NjNZdEFXWFpUNC84alZvPQ=="; Expires=Wed, 07 Feb 2024 21:33:58 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675805638.32e41381
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1369280378750846
date: Tue, 07 Feb 2023 21:33:58 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675805638.32e413bd
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=733821707099287&ev=PageView&dl=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&rl=https%3A%2F%2Fr.srvtrck.com%2F&if=false&ts=1675805690353&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1675805690353.2020497750&it=1675805690062&coo=false&eid=2dcd8755-EC44-497C-64B5-C7B200921B5B&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=733821707099287&ev=PageView&dl=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&rl=https%3A%2F%2Fr.srvtrck.com%2F&if=false&ts=1675805690353&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1675805690353.2020497750&it=1675805690062&coo=false&eid=2dcd8755-EC44-497C-64B5-C7B200921B5B&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=733821707099287&ev=PageView&dl=https%3A%2F%2Fshop4kids.no%2F%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&rl=https%3A%2F%2Fr.srvtrck.com%2F&if=false&ts=1675805690353&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&cs_est=true&fbp=fb.1.1675805690353.2020497750&it=1675805690062&coo=false&eid=2dcd8755-EC44-497C-64B5-C7B200921B5B&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 07 Feb 2023 21:33:59 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 56ad3ce1192a0e87e3253cb00f99ab0c
4dadc910d8b8e7fc31aac37ae56f5ae93278820b
6c138b60c4024bb649be8b2f460f2fed0548d788a0d15e2d7cbfb2b7185b1bdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6139
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:59 GMT
Last-Modified: Tue, 07 Feb 2023 19:51:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
tr.snapchat.com/config/no/3ef0114d-6bb9-45e2-b351-38ddde4329ba.js
200 OK 5.2 kB URL HTTP/2 tr.snapchat.com/config/no/3ef0114d-6bb9-45e2-b351-38ddde4329ba.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 62e5e3e37a17ad9bfe8e870de67b5b31
0f722437337f7a3285e7f43d44c1f6830d0142c7
cb5eceaec184f1818e71c06bcb7df21e3d4ce94acc233f5478e9046c082fb2f8
GET /config/no/3ef0114d-6bb9-45e2-b351-38ddde4329ba.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
access-control-allow-origin: https://shop4kids.no
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 2
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 90213e0ecaba9ce1ea853009e6735653
8a12629eb32b9663fe415c4bd16f6e18fd50fdbf
f7ed23e50bd53a268b9ffdefcb8ebabe40b39b4a26cf2933e4dfd214a39125a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 905
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:59 GMT
Last-Modified: Tue, 07 Feb 2023 21:18:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 90213e0ecaba9ce1ea853009e6735653
8a12629eb32b9663fe415c4bd16f6e18fd50fdbf
f7ed23e50bd53a268b9ffdefcb8ebabe40b39b4a26cf2933e4dfd214a39125a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 816
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 21:33:59 GMT
Last-Modified: Tue, 07 Feb 2023 21:20:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
www.linkbux.com/track?pid=LB00002126&mid=48935&url=https://www.shop4kids.no/&uid=ad4b694715316f9da42c644c8292cb0b
200 OK 0 B URL HTTP/2 www.linkbux.com/track?pid=LB00002126&mid=48935&url=https://www.shop4kids.no/&uid=ad4b694715316f9da42c644c8292cb0b
IP
ASN #45102 Alibaba US Technology Co., Ltd.
GET /track?pid=LB00002126&mid=48935&url=https://www.shop4kids.no/&uid=ad4b694715316f9da42c644c8292cb0b HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:55 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=ozbyDhA9; expires=Thu, 09-Mar-2023 21:33:55 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
r.srvtrck.com/v2/go?t=ctfp3%3A3%2F3f29dndt6c5%3F0ib1a4568l5%3D%3D7s7%2690%269ie2e507e%26es8v334420d147952fd1432c0c0a0e0b%3D2w48c9d53%3Ddwd795w0212i8%267706c%3Das4%2F4%2F8e0.678ja%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=1ffcb9363fa14a15acf00879e89437f3&sct=0&ct=1675805635514&cu=df21934cdc2a4e3b82e4ec0de3ed9d09&ykuid=3ab47dd669ca4403b75312986665cea5&sc=1&cs=29b965fc807f944503121334639e3edf
200 OK 0 B URL HTTP/2 r.srvtrck.com/v2/go?t=ctfp3%3A3%2F3f29dndt6c5%3F0ib1a4568l5%3D%3D7s7%2690%269ie2e507e%26es8v334420d147952fd1432c0c0a0e0b%3D2w48c9d53%3Ddwd795w0212i8%267706c%3Das4%2F4%2F8e0.678ja%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=1ffcb9363fa14a15acf00879e89437f3&sct=0&ct=1675805635514&cu=df21934cdc2a4e3b82e4ec0de3ed9d09&ykuid=3ab47dd669ca4403b75312986665cea5&sc=1&cs=29b965fc807f944503121334639e3edf
IP
GET /v2/go?t=ctfp3%3A3%2F3f29dndt6c5%3F0ib1a4568l5%3D%3D7s7%2690%269ie2e507e%26es8v334420d147952fd1432c0c0a0e0b%3D2w48c9d53%3Ddwd795w0212i8%267706c%3Das4%2F4%2F8e0.678ja%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=1ffcb9363fa14a15acf00879e89437f3&sct=0&ct=1675805635514&cu=df21934cdc2a4e3b82e4ec0de3ed9d09&ykuid=3ab47dd669ca4403b75312986665cea5&sc=1&cs=29b965fc807f944503121334639e3edf HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
Connection: keep-alive
Cookie: ykuid=3ab47dd669ca4403b75312986665cea5
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:55 GMT
content-type: text/html;charset=UTF-8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 795f3f261807b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/theme.min.js?v=60451137851990189171640031700
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/theme.min.js?v=60451137851990189171640031700
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0160/9003/8336/t/41/assets/theme.min.js?v=60451137851990189171640031700 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/theme.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0f6a0e3f-5afc-4453-8428-71d01544aacf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 25 Aug 2022 22:15:39 GMT
cf-cache-status: HIT
age: 14339782
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AIyIx%2Fc8thr5cmcUDfYDIJJHx8gAQbBtL35fVvMorS%2B5KQ7jWypuehU3pANrHtYq1wyURYmXxzNissnfyE%2BuQC%2FQctFqO%2FFIB2U2h%2FKEO3cnDd8GjHQvpmkMpw3Wi9vVbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=53.062, imageryFetch;dur=52.913, cfRequestDuration;dur=55.999994
server: cloudflare
cf-ray: 795f3f2ce9da1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 115986
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ecommplugins-scripts.trustpilot.com/v2.1/js/header.min.js?settings=eyJrZXkiOiJwNm82VDc2SmNoV0I2bm02IiwicyI6InNrdSJ9&shop=shop4kids-no.myshopify.com
200 OK 0 B URL HTTP/2 ecommplugins-scripts.trustpilot.com/v2.1/js/header.min.js?settings=eyJrZXkiOiJwNm82VDc2SmNoV0I2bm02IiwicyI6InNrdSJ9&shop=shop4kids-no.myshopify.com
IP
GET /v2.1/js/header.min.js?settings=eyJrZXkiOiJwNm82VDc2SmNoV0I2bm02IiwicyI6InNrdSJ9&shop=shop4kids-no.myshopify.com HTTP/1.1
Host: ecommplugins-scripts.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Wed, 18 Jan 2023 08:28:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 07 Feb 2023 08:55:16 GMT
etag: W/"5e781af634e6d270914ac815486710e7"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 77OHEyhi6Dp_88tbkusTQ6PnqwB8L1eNXBddskqL2FeWsPX_heXcSw==
age: 66817
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.static.kiwisizing.com/SizingPlugin.prod.js?v=308&shop=shop4kids-no.myshopify.com
200 OK 0 B URL HTTP/2 cdn.static.kiwisizing.com/SizingPlugin.prod.js?v=308&shop=shop4kids-no.myshopify.com
IP
ASN #34989 ServeTheWorld AS
GET /SizingPlugin.prod.js?v=308&shop=shop4kids-no.myshopify.com HTTP/1.1
Host: cdn.static.kiwisizing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 95578
cdn-uid: 4bb717c0-a7ed-41ef-8b3c-612af69d884d
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
etag: W/"9a581b53f00f476c1976ac3d26372e13"
last-modified: Mon, 20 Dec 2021 14:39:05 GMT
x-amz-id-2: j6FfPfmwkAh9OPT5+Pd4xuVWRbhTiozOoy8X7FxkcRRIVB7okweScqWLqwlLEMaX9FEhAcrif2o=
x-amz-request-id: T6B5ETFDAJP91FN4
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/25/2022 21:21:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8944b5fd8e9ed3649dfc3a7f078ac02d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
omnisnippet1.com/inshop/launcher.js?v=2023-02-07T21
200 OK 0 B URL HTTP/2 omnisnippet1.com/inshop/launcher.js?v=2023-02-07T21
IP
GET /inshop/launcher.js?v=2023-02-07T21 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 12:50:13 GMT
etag: W/"63cfd405-d3a3"
expires: Tue, 07 Feb 2023 21:25:26 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1294
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 795f3f3019cd0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
jf79.net/redirect/global.php?dai_url_domain=shop4kids.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&dai_url=
301 Moved Permanently 0 B URL HTTP/2 jf79.net/redirect/global.php?dai_url_domain=shop4kids.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&dai_url=
IP
GET /redirect/global.php?dai_url_domain=shop4kids.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_255978&dai_url= HTTP/1.1
Host: jf79.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.srvtrck.com/
Connection: keep-alive
Cookie: dci=GVxs0SomBUWmnmH; pdc=GVxs0SomBUWmnmH; ci_16476=ZF4xNjc1ODA1NjM1LGRjaV5HVnhzMFNvbUJVV21ubUg%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 07 Feb 2023 21:33:55 GMT
content-type: text/html; charset=UTF-8
location: https://shop4kids.no/?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_255978
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-expose-headers: P3p, Cache-Control, Expires, Content-Length, Content-Type
cache-control: no-store, no-cache, must-revalidate, max-age=14400
x-xss-protection: 0
expires: Wed, 08 Feb 2023 01:33:55 GMT
x-daisycon-cluster: ApacheContainer-aa1ae7f64d42-tracking.daisycon.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y48mu9lklnrqeh7vxoCw%2FAm5Ue0fFXFZVeQ2qHS7qhP%2FWimYdgdBfnxiyco0X7Pxa%2FNnYxlI3q6gYo22xqnFnAE9%2B3qEFnFNWQvfmgSmDgiIbCdhvSJ6eqD%2BdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795f3f280ad90b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=78799&shop=shop4kids-no.myshopify.com
200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=78799&shop=shop4kids-no.myshopify.com
IP
GET /js/ld/ld.js?a=78799&shop=shop4kids-no.myshopify.com HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=shop4kids.no&sn=FirefoxSyncframe&so=0&topUrl=shop4kids.no&info=F71nRF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czM3ZUd3M2hYMWtlTXBzVUtxNEoyUW1MUEc4d25mV0d3U1hyVUw5VWdFSUU&idsd=-1154423721,-617539913&cw=1&lsw=1
200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=shop4kids.no&sn=FirefoxSyncframe&so=0&topUrl=shop4kids.no&info=F71nRF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czM3ZUd3M2hYMWtlTXBzVUtxNEoyUW1MUEc4d25mV0d3U1hyVUw5VWdFSUU&idsd=-1154423721,-617539913&cw=1&lsw=1
IP
GET /sid/json?origin=onetag&domain=shop4kids.no&sn=FirefoxSyncframe&so=0&topUrl=shop4kids.no&info=F71nRF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czM3ZUd3M2hYMWtlTXBzVUtxNEoyUW1MUEc4d25mV0d3U1hyVUw5VWdFSUU&idsd=-1154423721,-617539913&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=shop4kids.no&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 590722
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/vendor-scripts-v9.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/vendor-scripts-v9.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0160/9003/8336/t/41/assets/vendor-scripts-v9.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0160/9003/8336/t/41/assets/vendor-scripts-v9.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 039539c7-8292-40fe-9b85-d303b73cd7fa
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 22 Aug 2022 09:25:30 GMT
cf-cache-status: HIT
age: 14310835
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ksGnnFWEqYsNobmSdovH74F6iE%2BniC4lxW4XckKFjQ9KUjUFTPXTrSFiH3NqbC9sGgTJxYU1%2BL6%2FIlEr8Suz4vmGysuMt%2F0mZwD5wV%2FYy0K48Qs9NqY%2B3caVBP7yzLC0Yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=107.274, imageryFetch;dur=86.302, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 795f3f2cf9f81bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=9RaJNV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czM3ZUd3M2hYMWtlTXBzVUtxNEoyUWtCa1FWNGlyM1gwM1pRWGo1S3FVUFE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:59 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=F71nRF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czM3ZUd3M2hYMWtlTXBzVUtxNEoyUW1MUEc4d25mV0d3U1hyVUw5VWdFSUU; expires=Sun, 03 Mar 2024 21:33:59 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 366819
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ecommplugins-trustboxsettings.trustpilot.com/shop4kids-no.myshopify.com.js?settings=1675185396984&shop=shop4kids-no.myshopify.com
200 OK 0 B URL HTTP/2 ecommplugins-trustboxsettings.trustpilot.com/shop4kids-no.myshopify.com.js?settings=1675185396984&shop=shop4kids-no.myshopify.com
IP
GET /shop4kids-no.myshopify.com.js?settings=1675185396984&shop=shop4kids-no.myshopify.com HTTP/1.1
Host: ecommplugins-trustboxsettings.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 25 Apr 2022 09:25:11 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 07 Feb 2023 09:25:19 GMT
etag: W/"0c3b12d2f8970ce9e1aa4cd769322026"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HzubMFvIir8givWzfK64z8LCvwviHgoryFrB3T8kbk1NS-jQN8lhFQ==
age: 43719
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shop4kids.no
Connection: keep-alive
Referer: https://shop4kids.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1800, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d1b75402-501f-4d43-8aaa-81d43fc096df
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Tue, 07 Feb 2023 20:35:39 GMT
cf-cache-status: HIT
age: 40
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2g%2Fo31DzvTH4TXVzxtzIH92LENLYO9jBYn9WzNblH3fHDmjFd6FeQA7ALpvy%2FqrOwU5Ob3WE3aSRTrK6rqf%2F4vN%2FJwTYtvoQFfWnxw%2BliVNWfJLIB4rCSauImU2Pu7UAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=27.570, imageryFetch;dur=27.399, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 795f3f323d2bb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 21:33:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 58711
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
185.107.56.197
52.89.64.64
157.240.221.16
23.227.60.200
178.250.0.147
104.18.16.174
23.38.200.197
78.46.197.88
188.114.97.1
3.5.68.114
185.146.173.20