| | 15.197.142.173 | 301 Moved Permanently | 94 B |
URL User Request GET HTTP/1.1IP15.197.142.173:80
File typeHTML document, ASCII text Hashcd644be7cb0360b2d81b89196d494392 a82c4080d99c6cc0d238605e9607bba58daf80d0 198ed2a4965351e6849555a4e1d308a2cba7f4be6ede4b5f9babef1facbe1c52
GET / HTTP/1.1
Host: au.lepo.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 21:57:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 94
Connection: keep-alive
Location: http://ruffledplumage.com/?a=102241&c=109675&s1=039
Server: ip-100-74-5-156.eu-west-2.compute.internal
Vary: Accept-Encoding
X-Request-Id: 9e7cf8a2-62ee-4ac4-b305-23aa028b63f0
|
|
| ruffledplumage.com/?a=102241&c=109675&s1=039 | 67.207.69.191 | 302 Found | 0 B |
URL User Request GET HTTP/1.1ruffledplumage.com/?a=102241&c=109675&s1=039 IP67.207.69.191:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectruffledplumage.com FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=102241&c=109675&s1=039 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
location: https://ruffledplumage.com/?a=102241&c=109675&s1=039
date: Wed, 24 Apr 2024 21:57:06 GMT
content-length: 0
|
|
| e1.o.lencr.org/ | 23.36.76.226 | | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash95696f04eab965762aaa8c4f30f623a6 e978672731c291b71637bf684ce267fd805ca466 f3c8e7b65efdd98d526ad8bc91a5ec1ab3b815ad0d229fb104513a93f181c8d0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F3C8E7B65EFDD98D526AD8BC91A5EC1AB3B815AD0D229FB104513A93F181C8D0"
Last-Modified: Tue, 23 Apr 2024 13:14:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 25 Apr 2024 03:57:06 GMT
Date: Wed, 24 Apr 2024 21:57:06 GMT
Connection: keep-alive
|
|
| ruffledplumage.com/?a=102241&c=109675&s1=039 | 67.207.69.191 | 302 Found | 0 B |
URL User Request GET HTTP/1.1ruffledplumage.com/?a=102241&c=109675&s1=039 IP67.207.69.191:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectruffledplumage.com FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=102241&c=109675&s1=039 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:07 GMT
content-length: 0
location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4=
set-cookie: sid=qREjPkgKqn69pkUfTk5VuT55RTSXgCZMib+FpD8jXGwt7k0sLKbfKw==; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
trk=pacNmvSxtLa97FHkwo/boz55RTSXgCZMib+FpD8jXGwt7k0sLKbfKw==; Max-Age=63071999; Expires=Fri, 24 Apr 2026 21:57:06 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
c108171=qREjPkgKqn43l8nSCwBIArQTvovyErocZCjBTQukpFElhvvSlPIr6Q==; Max-Age=2591999; Expires=Fri, 24 May 2024 21:57:06 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
pt30=c1ae075357c7440dbd2f4f2d0392e047; Max-Age=2592000; Expires=Fri, 24 May 2024 21:57:07 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=c1ae075357c7440dbd2f4f2d0392e047; Max-Age=157680000; Expires=Mon, 23 Apr 2029 21:57:07 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=c1ae075357c7440dbd2f4f2d0392e047; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
|
|
| doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= | 128.199.56.44 | 302 Found | 0 B |
URL User Request GET HTTP/2doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= IP128.199.56.44:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdoninio.com FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45 ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://youcantrackthis.com/?c=108587&s1=039&s5=ZEU-e10122ef-712e-4a04-9cf3-1924fcef615d&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxMzk5NTgyN3xTUWRSalFnbGVOTXpIVjVEM0t0bDc3S3hSRjF6UERQUmNweWRZZldUR3VnSkt5WWp5VFpoYnZFPXzEQeXhhye2Z1gkhMFse_js1DzpY7ngcI6I1TE3PytpXw==; Max-Age=31536000; HttpOnly
content-length: 0
date: Wed, 24 Apr 2024 21:57:07 GMT
X-Firefox-Spdy: h2
|
|
| youcantrackthis.com/?c=108587&s1=039&s5=ZEU-e10122ef-712e-4a04-9cf3-1924fcef615d&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn | 52.2.48.141 | | 209 B |
URL youcantrackthis.com/?c=108587&s1=039&s5=ZEU-e10122ef-712e-4a04-9cf3-1924fcef615d&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn IP52.2.48.141:0
File typeHTML document, ASCII text, with CRLF line terminators Hashdb401ad6a351bbf4e16cee3b94bc5c20 1f6ce25291e68393e0240d761406d090f9d1c528 5a9c73721e53c42a12b879235d038f2c4230326b402d6814b817b2caf10a359d
GET /?c=108587&s1=039&s5=ZEU-e10122ef-712e-4a04-9cf3-1924fcef615d&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 209
Content-Type: text/html; charset=utf-8
Date: Wed, 24 Apr 2024 21:57:07 GMT
Location: https://www.bareflirt.com/landing6?pi=102241&pt1=418493194&pe=039&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=+zIEs7HQK36kPrrer2tLnz55RTSXgCZMluOFN3X1AQtF10IGQILIPg==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=SYjtVOXibVyOsacGqKV9MT55RTSXgCZMluOFN3X1AQtF10IGQILIPg==; domain=.youcantrackthis.com; expires=Fri, 24-Apr-2026 21:57:07 GMT; path=/; HttpOnly
c104671=+zIEs7HQK37wZoGSOBPttFp+lyYe5pMeT7H6UV5GWfMlhvvSlPIr6Q==; domain=.youcantrackthis.com; expires=Fri, 24-May-2024 21:57:07 GMT; path=/; HttpOnly
Connection: close
|
|
| | 3.33.152.147 | 301 Moved Permanently | 94 B |
URL User Request GET HTTP/1.1IP3.33.152.147:80
File typeHTML document, ASCII text Hashcd644be7cb0360b2d81b89196d494392 a82c4080d99c6cc0d238605e9607bba58daf80d0 198ed2a4965351e6849555a4e1d308a2cba7f4be6ede4b5f9babef1facbe1c52
GET / HTTP/1.1
Host: au.lepo.today
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 21:57:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 94
Connection: keep-alive
Location: http://ruffledplumage.com/?a=102241&c=109675&s1=039
Server: ip-100-74-4-190.eu-west-2.compute.internal
Vary: Accept-Encoding
X-Request-Id: 48a28b7e-7454-49e6-8051-4c667b3fa3ec
|
|
| e1.o.lencr.org/ | 23.36.76.226 | | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash95696f04eab965762aaa8c4f30f623a6 e978672731c291b71637bf684ce267fd805ca466 f3c8e7b65efdd98d526ad8bc91a5ec1ab3b815ad0d229fb104513a93f181c8d0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F3C8E7B65EFDD98D526AD8BC91A5EC1AB3B815AD0D229FB104513A93F181C8D0"
Last-Modified: Tue, 23 Apr 2024 13:14:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Thu, 25 Apr 2024 03:57:06 GMT
Date: Wed, 24 Apr 2024 21:57:08 GMT
Connection: keep-alive
|
|
| ruffledplumage.com/?a=102241&c=109675&s1=039 | 67.207.69.191 | 302 Found | 0 B |
URL User Request GET HTTP/1.1ruffledplumage.com/?a=102241&c=109675&s1=039 IP67.207.69.191:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectruffledplumage.com FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=102241&c=109675&s1=039 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:08 GMT
content-length: 0
location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4=
set-cookie: sid=+zIEs7HQK35UEOCj5vNvoT55RTSXgCZMuv98v8ZDwVxvjogPUyjMuA==; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
trk=SYjtVOXibVykPrrer2tLnz55RTSXgCZMuv98v8ZDwVxvjogPUyjMuA==; Max-Age=63071999; Expires=Fri, 24 Apr 2026 21:57:07 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
c108171=+zIEs7HQK36XMfDhIf9qGCgw5PK+bJ0d7FT7VcSVlQwlhvvSlPIr6Q==; Max-Age=2591999; Expires=Fri, 24 May 2024 21:57:07 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
pt30=692ed5ea93d942a189d35e50d966e396; Max-Age=2592000; Expires=Fri, 24 May 2024 21:57:08 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=692ed5ea93d942a189d35e50d966e396; Max-Age=157680000; Expires=Mon, 23 Apr 2029 21:57:08 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=692ed5ea93d942a189d35e50d966e396; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
|
|
| doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= | 128.199.56.44 | 302 Found | 0 B |
URL User Request GET HTTP/2doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= IP128.199.56.44:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdoninio.com FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45 ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=039&s3=&s4= HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://youcantrackthis.com/?c=111906&s1=039&s5=ZEU-5c577f9d-66d4-4ec7-9a52-055548552d89&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxMzk5NTgyOXw2TUtiT3R2M1ItRFRreGU2RDZYXzZBeHBiMWxYd09PblFFRXN3cHZoZnp3VWJkcnY2d3VRX2c4PXwhn-J9ioou5nU1OT8Iulpqo-AflKLkrnivah6QQaC4RA==; Max-Age=31536000; HttpOnly
content-length: 0
date: Wed, 24 Apr 2024 21:57:09 GMT
X-Firefox-Spdy: h2
|
|
| youcantrackthis.com/?c=111906&s1=039&s5=ZEU-5c577f9d-66d4-4ec7-9a52-055548552d89&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn | 52.70.49.193 | 302 Found | 210 B |
URL User Request GET HTTP/1.1youcantrackthis.com/?c=111906&s1=039&s5=ZEU-5c577f9d-66d4-4ec7-9a52-055548552d89&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn IP52.70.49.193:443
CertificateIssuerGlobalSign nv-sa Subject*.youcantrackthis.com FingerprintCA:62:BB:43:52:C3:DE:F8:A9:95:61:79:8A:E4:D4:43:F9:C7:F3:BE ValidityThu, 28 Dec 2023 01:37:27 GMT - Tue, 28 Jan 2025 01:37:26 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashbe1d5e71d845fd64c2c82c936cef9faf b2acf918a573bfaa692f176db4ef492d51a72c3d 4ffb4ca48aebf1bbc88a205deed67244a967bd9d0f6dcf91bee6ef3fdf55d6eb
GET /?c=111906&s1=039&s5=ZEU-5c577f9d-66d4-4ec7-9a52-055548552d89&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 210
Content-Type: text/html; charset=utf-8
Date: Wed, 24 Apr 2024 21:57:09 GMT
Location: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=+zIEs7HQK36MDfzpLd8Xaz55RTSXgCZMHwPPanotHkN5b+az/4Isow==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=SYjtVOXibVz8x3Jp2gsqJz55RTSXgCZMHwPPanotHkN5b+az/4Isow==; domain=.youcantrackthis.com; expires=Fri, 24-Apr-2026 21:57:09 GMT; path=/; HttpOnly
c106328=+zIEs7HQK37rMGDDWczl7zioZhd+2f/6np2KJZfLtEwlhvvSlPIr6Q==; domain=.youcantrackthis.com; expires=Fri, 24-May-2024 21:57:09 GMT; path=/; HttpOnly
Connection: close
|
|
| www.kosoghygge.com/img/logo.png | 34.149.196.159 | 200 OK | 4.9 kB |
URL GET HTTP/3www.kosoghygge.com/img/logo.png IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typePNG image data, 300 x 110, 8-bit/color RGBA, non-interlaced Hashc1b75be98c7f9e5d3e02ad75196adace e1150e306cd385e3a282a3cc6cbbbcb7eacf8969 5b7df3cd104e71cace5988ef0e37584be81142aba4d007b6e45a1770605342de
GET /img/logo.png HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: Apache/2.4.58 (Ubuntu)
vary: X-Forwarded-Proto
last-modified: Tue, 23 Apr 2024 12:03:48 GMT
etag: "132c-616c258bb6cde"
accept-ranges: bytes
content-length: 4908
x-ua-compatible: IE=edge,chrome=1
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/js/ad-provider.js | 34.149.196.159 | 200 OK | 512 B |
URL GET HTTP/3www.kosoghygge.com/landers/js/ad-provider.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeASCII text, with very long lines (979) Hashacd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681
GET /landers/js/ad-provider.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: "6620e671-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 9839245
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/images/general/google-logo.svg | 34.149.196.159 | 200 OK | 688 B |
URL GET HTTP/3www.kosoghygge.com/landers/images/general/google-logo.svg IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeSVG Scalable Vector Graphics image Hash686f8efa6e3e28e96d1c08399e8d353d 4524589b0dceefb6ae6389f36634441df69152d5 0cf576a5dab9315daac7ffe29d29ed585e0ff9850e59408d0f25f38dc1da037b
GET /landers/images/general/google-logo.svg HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:39:19 GMT
server: nginx/1.14.2
content-type: image/svg+xml
content-length: 688
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: "6620e664-2b0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 9906227 9903124
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/images/loader/loading.gif | 34.149.196.159 | 200 OK | 2.9 kB |
URL GET HTTP/3www.kosoghygge.com/landers/images/loader/loading.gif IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeGIF image data, version 89a, 128 x 15 Hash62b08454087f1ef8b27bd2bcda330537 cac1914632f4c859f6176a84078f1017bad069f8 06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6
GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Thu, 18 Apr 2024 09:22:46 GMT
etag: "6620e666-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 9364864
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/css/fontawesome-all.min.css | 34.149.196.159 | 200 OK | 11 kB |
URL GET HTTP/3www.kosoghygge.com/landers/css/fontawesome-all.min.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typegzip compressed data, from Unix Hash2c32ad35d4a792e9a492cb56ceba2cd0 9bfbd64e99a1b1f7c1d4cff3f0925d88a60aa400 1ef7f362a6a67b32ea2e4d6211601974154dd1911fcf4d5279c9bab22a2edcbe
GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: W/"6620e664-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 10296529
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/favicon/favicon.ico | 34.149.196.159 | 404 Not Found | 280 B |
URL GET HTTP/3www.kosoghygge.com/favicon/favicon.ico IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text Hashc0d3a2ffd3b8206a1dc423b1e44f7195 38096e272ccb984907da0cbcc3f65124bd92a6d7 aa04b53c21b07814e7ba8c7e4b63b3d8aa7937b567741221b3f30458addcf4f3
GET /favicon/favicon.ico HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 21:57:10 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/css/theme/pornhub.css | 34.149.196.159 | 200 OK | 2.7 kB |
URL GET HTTP/3www.kosoghygge.com/landers/css/theme/pornhub.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typegzip compressed data, from Unix Hash08164366c85b9f688133df8ca08fef34 9a1528ff94811a9ba83033c32c54e9145dbf3463 f4dd4fb2ab16ebaa3915a793cfbe3d387a2da73d911ca64eed34f4cc8a032d44
GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 9660631
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/media-registry.js | 34.149.196.159 | 200 OK | 8.6 kB |
URL GET HTTP/3www.kosoghygge.com/landers/media-registry.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash996d00ce3568daa889df786e8892e2f3 cee9721d9288c308d1fa237b9c3abe6f35312b69 0860495b30b1debdec029cf077e290876264883af129c82a872aad5abb94cef5
GET /landers/media-registry.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:17:00 GMT
server: nginx/1.14.2
x-guploader-uploadid: ABPtcPqEmCqD_E4UB0LfU_84XCJtbAWlr3YkmkaKkQIUJi4xfg0mZLlYtM624ZN630JLaZnx5Io
x-goog-generation: 1713440482901169
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=wF2vjw==, md5=mW0AzjVo2qiJ33huiJLi8w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 2410
last-modified: Thu, 18 Apr 2024 11:41:22 GMT
etag: "996d00ce3568daa889df786e8892e2f3-gzip"
content-type: application/javascript
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8593
via: 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/css/landing001.css | 34.149.196.159 | 200 OK | 253 kB |
URL GET HTTP/3www.kosoghygge.com/landers/css/landing001.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (39977) Size253 kB (252698 bytes) Hash018f11800ffcebc9f1b6421e8e40df14 c7c5cade0a494b38a6239795f295f96360b402a6 3be8e92353a10860651ef4df41778db036c2a4cfd4a60bca1515a4c85db1b243
GET /landers/css/landing001.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 9564057
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 3970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| samlesamtykke.com/cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=7dee2c0d244f447095f348eac17ce55d | 35.195.163.35 | 200 OK | 14 kB |
URL GET HTTP/2samlesamtykke.com/cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=7dee2c0d244f447095f348eac17ce55d IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
File typeJavaScript source, ASCII text Hash012615af4cb5248dc024cbff746e3b3a 7d844298425295ac4c796d0a5d876455fbb1c5d2 d81bde72ac2d28e0cc1d6dbad6672a0a81cf51b36f380b488daaca9fe91372fb
GET /cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=7dee2c0d244f447095f348eac17ce55d HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:10 GMT
content-type: application/javascript
content-length: 14215
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/translations/nb-no2.json | 34.149.196.159 | 200 OK | 218 kB |
URL GET HTTP/3www.kosoghygge.com/landers/translations/nb-no2.json IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Size218 kB (218064 bytes) Hash03b5a86609e5b54a54f2d4aa9c4de6be 2b28f57afd7505c6b4daa22867970c84396dd642 459139ce69de1a12b7372c8ca54b3f68a0d6b3a24c499849f3daa892fdc25183
GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 20:59:17 GMT
server: nginx/1.14.2
content-length: 218064
x-guploader-uploadid: ABPtcPrfjAWLa-VIbSC1x0Eabul0qwmEI31C77hAl0rOgJfMs3l2pZKoqXdDUl1oLYX_WtJBeJo
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 3473
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/images/landing001/default/default/serie01_01.jpg?geo=no | 34.149.196.159 | 200 OK | 37 kB |
URL GET HTTP/3www.kosoghygge.com/landers/images/landing001/default/default/serie01_01.jpg?geo=no IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 467x682, components 3 Hash8580663a886d4a298da70883f173ef5c b042633a4dfbaeb33a97c4efc53b85a000730f5d a7b257fe27ccec06bf741eaed652f72bb556ae31b548648aa7e6b07c4e38a417
GET /landers/images/landing001/default/default/serie01_01.jpg?geo=no HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:11 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 36626
last-modified: Thu, 18 Apr 2024 09:22:44 GMT
etag: "6620e664-8f12"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 3776727
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s | 142.250.74.164 | 200 OK | 73 kB |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
Hash5681974af5c5e0a6dec019d56f74832a abed033bee1d7be5c2607cd7c059b0142411fe4f a704aa1088ed33cc1634c91dad19a9d2ee73aa1d5e13cc5faff293cd885cc5a1
GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 24 Apr 2024 21:57:10 GMT
date: Wed, 24 Apr 2024 21:57:10 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 15:50:55 GMT
expires: Wed, 23 Apr 2025 15:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 108376
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:51:00 GMT
expires: Thu, 24 Apr 2025 20:51:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 3971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashea790d909ca4898504e4dea61d1cbad8 cf6688f5aad9a8f33df28f6661caf4eb96b22cd4 ae357979201ba9d0a6acf89cff862d04435d688458b25e17cbb10af33eb33f4e
GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 21:57:11 GMT
expires: Wed, 24 Apr 2024 21:57:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94392
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 587648
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 534724
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m | 142.250.74.164 | 200 OK | 206 kB |
URL GET HTTP/3www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205913 bytes) Hashe4eb924eec164dfe5fb43e5d8e6b2a2f 582bad0eac6440aa49632ca1e24d7a52a89d7d92 428ed37cf336160c986f3c470a345bd9790e95d119cfb794767637df59eb3a59
GET /recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 24 Apr 2024 21:57:11 GMT
date: Wed, 24 Apr 2024 21:57:11 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:54:07 GMT
expires: Thu, 25 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 586984
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (17602) Hasha881e4c268e13ad20405ae80fca4c36b dee477906e2c92b4c7747029a2409069b9b676ad 63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77
GET /js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7447
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 05:05:57 GMT
expires: Thu, 24 Apr 2025 05:05:57 GMT
cache-control: public, max-age=31536000
age: 60674
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| samlesamtykke.com/cc.css | 35.195.163.35 | 200 OK | 3.9 kB |
IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
File typeassembler source, ASCII text Hashddb6776d9e0b9844c9f57355d7492805 da918eb4fefa9d625e5858496c2c4a20ad893619 9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34
GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:11 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/collector | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/collector IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:11 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise.js | 142.250.74.164 | 200 OK | 5.2 kB |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
Hash27fc076803aacd9e06cbd77682d444f9 6ae5c3bc15b8514cce474a3f0ab4e07d8910a5ac c970e669873fff1147a5dde6dcbb90b5d0a34eee7c2d221203ac8a8ed672dd93
GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 24 Apr 2024 21:57:10 GMT
date: Wed, 24 Apr 2024 21:57:10 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:11 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 371 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashaad76f926b6c219e918916e6f25e4129 4823643373db875486f8ac895ea532106e6798d4 0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:11 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:11 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 354 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashf3306f051731bcce1d98a030b8a2d9cf ada4a5bb07ee1872a579a651298774329b036f43 cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:12 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:12 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com Fingerprint3C:93:1B:7C:6B:A9:B9:30:9C:9C:45:CC:2A:38:9A:B1:3F:DE:A1:73 ValidityTue, 27 Feb 2024 21:10:34 GMT - Mon, 27 May 2024 21:10:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 515
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 24 Apr 2024 21:57:12 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/favicon/apple-touch-icon-180x180.png | 34.149.196.159 | 404 Not Found | 280 B |
URL GET HTTP/3www.kosoghygge.com/favicon/apple-touch-icon-180x180.png IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text, with no line terminators Hash6884a60c1a0dab18a252f298bb96c60b fa1879e09cff7b14f99621cb988121be0f932182 348e29aaee19753affd712fcaa8502d77ad029a65c3fe77259044f1a4be608f4
GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 21:57:10 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/js/landing001.js | 34.149.196.159 | 200 OK | 64 kB |
URL GET HTTP/3www.kosoghygge.com/landers/js/landing001.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landers/js/landing001.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:57 GMT
etag: W/"6620e671-f7e1"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2993957
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/js/vendor.js | 34.149.196.159 | 200 OK | 124 kB |
URL GET HTTP/3www.kosoghygge.com/landers/js/vendor.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Size124 kB (123566 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landers/js/vendor.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 21:57:10 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Thu, 18 Apr 2024 09:22:58 GMT
etag: W/"6620e672-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 10296533
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB | 142.250.74.168 | 200 OK | 205 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP142.250.74.168:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (3484) Size205 kB (205171 bytes) Hash8e347ff434862fabee814f905de8f49b 5c054e14d50572bfdbfa99214da0ff93a99c38cb 43f80933dcee7578c762a26c976f59604e604d9ea40d83d49c36ee38bca5bb69
GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 21:57:11 GMT
expires: Wed, 24 Apr 2024 21:57:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 21:11:04 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72192
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn | 34.149.196.159 | 200 OK | 20 kB |
URL User Request GET HTTP/2www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text, with very long lines (2091) Hash5d96a2c587e7ea5260e7071af463750c 08eb3690b3a821d25284c3b7d38402a85ec5479e 1f1d460c98641178c08c1350ea41a86de9a3d4a82280fd553d67203d78f14c36
GET /landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 21:57:09 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 7758878
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki | 142.250.74.164 | 200 OK | 44 kB |
URL GET HTTP/3www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=418493198&pe=039&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeHTML document, ASCII text, with very long lines (35522) Hashda1f5657025bd5b436ccd4b5d30d7d05 57d26df49eaebb58b08b011bf87f886ebf79ba66 ccfadbc8987396cf4394db2f9f13dc2dd342716e4cd8ede5cbb571a9db95649f
GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=peg22rpj6ki HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 21:57:10 GMT
content-security-policy: script-src 'nonce-LKOr1KFdqlQBUJHQzqRazQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|