Overview

URL cobalten.com
IP206.54.165.186
ASNAS35415 Webzilla B.V.
Location Netherlands
Report completed2019-06-14 09:53:18 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 3 reports on IP: 206.54.165.186

Date UQ / IDS / BL URL IP
2019-06-21 08:12:25 +0200
0 - 0 - 2 cobalten.com 206.54.165.186
2019-06-07 13:58:10 +0200
0 - 0 - 0 cobalten.com/apple-touch-icon-precomposed.png 206.54.165.186
2019-05-30 08:39:29 +0200
0 - 0 - 1 https://cobalten.com/fac.php 206.54.165.186

Last 10 reports on ASN: AS35415 Webzilla B.V.

Date UQ / IDS / BL URL IP
2019-07-01 09:07:51 +0200
0 - 0 - 0 https://pushazam.com 88.85.66.133
2019-07-01 02:08:27 +0200
0 - 0 - 0 Hilltopads.net 88.85.94.227
2019-06-30 18:03:30 +0200
0 - 0 - 0 https://comdexcipa.info/bI3JVK0LPM2NlOjPPQXRB (...) 88.85.94.232
2019-06-30 17:58:41 +0200
0 - 0 - 0 burporess.pro/bS3TVU0VPW2XlYjZPaXbBczdJemf9g0 (...) 88.85.94.229
2019-06-30 17:53:56 +0200
0 - 0 - 0 https://123freemovie.femvxitrquzretxzdq.info/ 88.85.94.236
2019-06-30 13:52:46 +0200
0 - 0 - 0 https://pornoid.notificationallow.com/ 88.85.94.227
2019-06-30 13:49:33 +0200
0 - 0 - 0 https://notificationallow.com/cbHNViz.aGEF5Lv (...) 88.85.94.227
2019-06-30 13:44:55 +0200
0 - 0 - 0 https://amliands.info/cBHlV/zVaREd5wvxdoGdlSm (...) 88.85.94.238
2019-06-30 13:23:27 +0200
0 - 0 - 1 https://deloplen.com/ 206.54.165.3
2019-06-30 13:16:32 +0200
0 - 0 - 0 https://eneritchmax.info/bF3GVH0IPJ2KlLjMPNXO (...) 88.85.94.237

Last 10 reports on domain: cobalten.com

Date UQ / IDS / BL URL IP
2019-06-25 11:03:31 +0200
0 - 0 - 2 cobalten.com 188.42.162.184
2019-06-21 08:12:25 +0200
0 - 0 - 2 cobalten.com 206.54.165.186
2019-06-14 19:59:13 +0200
0 - 0 - 0 cobalten.com 188.42.162.184
2019-06-07 14:22:34 +0200
0 - 0 - 0 cobalten.com/apple-touch-icon.png 188.42.162.170
2019-06-07 14:16:30 +0200
0 - 0 - 0 cobalten.com 188.42.162.184
2019-06-07 13:58:10 +0200
0 - 0 - 0 cobalten.com/apple-touch-icon-precomposed.png 206.54.165.186
2019-06-07 08:57:58 +0200
0 - 0 - 1 cobalten.com/fac.php 188.72.213.176
2019-05-30 08:39:29 +0200
0 - 0 - 1 https://cobalten.com/fac.php 206.54.165.186
2019-05-30 08:33:48 +0200
0 - 0 - 1 cobalten.com/fac.php 188.72.213.176
2019-05-30 08:32:59 +0200
0 - 0 - 0 cobalten.com 188.42.162.184


JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 399, repeated: 1) - SHA256: 6d2eede6e983b167c5d539d2abe25c1478397e54265129fab40628f22cc64cfc

                                        < img height = "1"
width = "1"
border = "0"
alt = ""
src = "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/983473429/?random=1560498767843&cv=9&fst=1560498767181&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F"
style = "display:none" / >
                                    

#2 JavaScript::Write (size: 399, repeated: 1) - SHA256: 27b2fc51d8ae71fcd66ded7bdf40927829104ef1a24faa045d2b0f8b9cec481c

                                        < img height = "1"
width = "1"
border = "0"
alt = ""
src = "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/995032169/?random=1560498767181&cv=9&fst=1560498767181&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F"
style = "display:none" / >
                                    


HTTP Transactions (21)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: cobalten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.42.162.184
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 14 Jun 2019 07:52:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *, *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: SeenToday=1; expires=Sat, 15-Jun-2019 07:52:47 GMT; Max-Age=86400; path=/ OAGEO5580f=17%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270%7C%2B200; expires=Sat, 15-Jun-2019 07:52:47 GMT; Max-Age=86400; path=/
Location: http://www.cobalten.com
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.cobalten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.51.19.158
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.6.3
Date: Fri, 14 Jun 2019 07:52:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   3295
Md5:    5757703645cea839bd7624805ab65f3f
Sha1:   69fd2e492d3b090bc88199496715260da7ff7c3f
Sha256: d90a6c293c0ac774c09c88fddd6fe614d07e61d5ba5c3092d807afa0f6d2d4c2
                                        
                                            GET /css?family=PT+Sans&subset=latin,cyrillic-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 14 Jun 2019 07:52:47 GMT
Date: Fri, 14 Jun 2019 07:52:47 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   189
Md5:    3f630e9f795c015bb59bf9378efb29ca
Sha1:   fbd6836e67fc7d6ed7ec20d7aed137c0bd51b0f5
Sha256: 430031921312910024d2068d61bf42973534965112fba5684c40018c2295adae
                                        
                                            GET /style/style.css HTTP/1.1 
Host: www.cobalten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         52.51.19.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.6.3
Date: Fri, 14 Jun 2019 07:52:47 GMT
Content-Length: 1731
Last-Modified: Wed, 11 Jan 2017 13:46:31 GMT
Connection: keep-alive
Etag: "58763737-6c3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   1731
Md5:    56b3242ce872ea8e4292d770c67cab48
Sha1:   e0b81c39ac770339cde663ff816e23bad61382b1
Sha256: 8aa65e9cec2b27731ba9efdc12d91438722c19c827a706d6e9c8bea46a6591fd
                                        
                                            GET /pagead/conversion.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Fri, 14 Jun 2019 07:52:47 GMT
Expires: Fri, 14 Jun 2019 07:52:47 GMT
Cache-Control: private, max-age=3600
Etag: 11690690496941220196
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 9306
X-XSS-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   9306
Md5:    703432a0eab78eefa720ead92e6b1576
Sha1:   45ddea244724cfa2a06dd5fa9d00357b9e85911c
Sha256: 5f3e78fabbc653c6e5f5194b2e65f1905352073e31fbeb671853b690613ce55a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 14 Jun 2019 07:52:47 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6cd9ddb92a55eeb648cd3d5d542162ab
Sha1:   39810ddbe99d3d913fa82dc564deab392694fe23
Sha256: 83dc7c18620ca7876260274b72bb16d8cf82893ba501bc6e0dc5ebfb0501aa97
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 14 Jun 2019 07:52:47 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /recaptcha/api.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.21.132
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Expires: Fri, 14 Jun 2019 07:52:47 GMT
Date: Fri, 14 Jun 2019 07:52:47 GMT
Cache-Control: private, max-age=300
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   464
Md5:    c6f2921095879e12a77ceb64c61c711d
Sha1:   de7ad5c4d96d530a96e226de24d1237f2544a8f1
Sha256: e002f7b53c87b9b7a1eacae066331d4b7355e12821265d6668938a8b63429be9
                                        
                                            GET /images/main.png HTTP/1.1 
Host: www.cobalten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/style/style.css

                                         
                                         52.51.19.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.6.3
Date: Fri, 14 Jun 2019 07:52:47 GMT
Content-Length: 22346
Last-Modified: Wed, 11 Jan 2017 13:46:31 GMT
Connection: keep-alive
Etag: "58763737-574a"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 545 x 147, 8-bit/color RGBA, non-interlaced
Size:   22346
Md5:    36c39f3894831ae60a182fb4c3b71f55
Sha1:   0cf992462e66773b49b923ca77a55707de2cc904
Sha256: 3805c748c817101f563cde1e190ae0591513a97fcc831171d2f85d93554ec840
                                        
                                            GET /s/ptsans/v10/jizaRExUiTo99u79D0-Eww.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=PT+Sans&subset=latin,cyrillic-ext
Origin: http://www.cobalten.com

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 111948
Date: Sat, 01 Jun 2019 22:31:08 GMT
Expires: Sun, 31 May 2020 22:31:08 GMT
Last-Modified: Tue, 19 Feb 2019 22:38:21 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 1070499


--- Additional Info ---
Magic:  data
Size:   111948
Md5:    13e3578fe085e275714cbdfd325e9db8
Sha1:   2f7168267dc9e314c9cdfe77b2c790ce54f7e247
Sha256: f23f30dfdf57211f87c092d63bffb917422844c2cc0bbe776b49ca278cf05fee
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 14 Jun 2019 07:52:48 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    5249fc28f55077258483be50d23c98f2
Sha1:   6f4a925f0355567e95cfa8f18c0fe174b0377732
Sha256: ecca3f5499f2443eb3c636fac0af02a2100bffd820743e0e6620c8ab43b9b5e3
                                        
                                            GET /recaptcha/api2/v1559543665173/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 93780
Date: Wed, 05 Jun 2019 21:17:01 GMT
Expires: Thu, 04 Jun 2020 21:17:01 GMT
Last-Modified: Mon, 03 Jun 2019 17:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 729347
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   93780
Md5:    7a08d8abb978c60bb9ed6ae3376d62af
Sha1:   dc55135f6c62045222e15b10ab178cdad6b02b54
Sha256: 68b98f7e9ebd04f28e2dda9370aaa320b5f7f6912cc29039a632f4bda737bb50
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 14 Jun 2019 07:52:48 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b55969310721c098cb00cbc292a38216
Sha1:   4a093c419d64cc9e79045630e6cc382323e880ad
Sha256: 05479a98d08a1835980595eba22d5564a1fd1fd9c1355eeafac4d02296f8b25e
                                        
                                            GET /pagead/viewthroughconversion/995032169/?random=1560498767181&cv=9&fst=1560498767181&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.com/pagead/1p-user-list/995032169/?random=1560498767181&cv=9&fst=1560495600000&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=2895466848&resp=GooglemKTybQhCsO
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 14-Jun-2019 08:07:48 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/viewthroughconversion/983473429/?random=1560498767843&cv=9&fst=1560498767181&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.com/pagead/1p-user-list/983473429/?random=1560498767843&cv=9&fst=1560495600000&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=997292467&resp=GooglemKTybQhCsO
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 14-Jun-2019 08:07:48 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/995032169/?random=1560498767181&cv=9&fst=1560495600000&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=2895466848&resp=GooglemKTybQhCsO HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.21.132
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Location: https://www.google.no/pagead/1p-user-list/995032169/?random=1560498767181&cv=9&fst=1560495600000&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=2895466848&resp=GooglemKTybQhCsO&ipr=y
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/983473429/?random=1560498767843&cv=9&fst=1560495600000&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=997292467&resp=GooglemKTybQhCsO HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         172.217.21.132
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Location: https://www.google.no/pagead/1p-user-list/983473429/?random=1560498767843&cv=9&fst=1560495600000&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=997292467&resp=GooglemKTybQhCsO&ipr=y
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 14 Jun 2019 07:52:48 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    be9f20eb49472e2f2dc9c975ea9d5df9
Sha1:   689ae53bda39cdcb62ed02ce3c9557345171350e
Sha256: ea94dd39e1d50d3bf08080034979b5ccd2dfcf6e03c97a6ded95f4e7c244ab20
                                        
                                            GET /pagead/1p-user-list/995032169/?random=1560498767181&cv=9&fst=1560495600000&num=1&fmt=3&label=_iK6CP-_7xcQ6fi72gM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=2895466848&resp=GooglemKTybQhCsO&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/983473429/?random=1560498767843&cv=9&fst=1560495600000&num=2&fmt=3&label=0_cMCPultwYQlbr61AM&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&frm=0&url=http%3A%2F%2Fwww.cobalten.com%2F&cdct=2&is_vtc=1&random=997292467&resp=GooglemKTybQhCsO&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.cobalten.com/

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 14 Jun 2019 07:52:48 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.cobalten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.51.19.158
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.6.3
Date: Fri, 14 Jun 2019 07:52:48 GMT
Content-Length: 0
Last-Modified: Wed, 11 Jan 2017 13:46:31 GMT
Connection: keep-alive
Etag: "58763737-0"
Accept-Ranges: bytes


--- Additional Info ---