Report - gryphiaastroid.com/?a=2040&c=112954&s1={var1}&s2={clickid}

Report Overview

Submitted URL
gryphiaastroid.com/?a=2040&c=112954&s1={var1}&s2={clickid}
IP
3.33.249.212
ASN
#16509 AMAZON-02
Submitted
2024-05-01 13:05:37
Access
public
Website Title
Hyggeligtreff.com
Final URL
www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.hyggeligtreff.com	unknown	2020-01-20	2020-02-04	2024-02-21	10 kB	1.1 MB	35.227.204.77
samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-27	967 B	19 kB	35.195.163.35
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	2.9 kB	413 kB	142.250.74.132
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-30	875 B	485 kB	142.250.74.40
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-01	1.0 kB	33 kB	216.58.207.227
api.samlesamtykke.com	unknown	2018-05-22	2018-05-31	2024-04-30	4.3 kB	8.4 kB	35.195.163.35
gryphiaastroid.com	unknown	2021-10-28	2021-10-29	2023-10-09	512 B	827 B	15.197.214.180
cybermeetme2.com	367613	2018-04-16	2019-07-08	2024-03-19	543 B	499 B	188.166.38.225
trackeruptimes.com	unknown	2018-09-24	2019-03-14	2024-03-19	571 B	961 B	54.173.106.225
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-30	1.9 kB	442 kB	142.250.74.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-01	medium	gryphiaastroid.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	2.4 kB	2023-11-20	2024-05-15
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-20 11:53:32 Last Seen2024-05-15 19:13:24 Times Seen336 Hash 0f9eb049ae54f0f8e7a79457c1c68e55 a958b91729a9d44a23f3535d0687cae777ee8255 0d179d997f91d5c01f757891badcdc4cceeb7e5aad919e47b31df5ea21ba88cf Loading...

	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	147 B	2023-03-07	2024-05-15
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-15 19:13:24 Times Seen940 Hash b85aa80cb826211a36318337793411db e34920a6965fb7b9102be2dcde8ae363e4355686 e4de3377c03566f32b347f14973f5e998466e585c9bbd27f7dc9099ecf77e7a2 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2	75 B	2023-03-07	2024-05-15
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15:59 Last Seen2024-05-15 21:20:15 Times Seen10660 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.hyggeligtreff.com/landers/js/landing005.js	74 kB	2024-04-19	2024-05-01
Pretty URL www.hyggeligtreff.com/landers/js/landing005.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:28:41 Last Seen2024-05-01 15:05:40 Times Seen3 Hash 9098735097d3aed3311de4217bc7449d da5b4821ec2fb54e5419643b758f20f80409fb0e 612a08a4c9d1b89f6ffbd5e03a310c3eb54b4f19291046301e1ac62aa28867ae Loading...

	www.google.com/js/bg/Dahk90Fxhr1MEtfyZ-6_j6N-qVuiwfy-NjSFsUln5nQ.js	18 kB	2024-04-30	2024-05-02
Pretty URL www.google.com/js/bg/Dahk90Fxhr1MEtfyZ-6_j6N-qVuiwfy-NjSFsUln5nQ.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 09:02:36 Last Seen2024-05-02 08:58:24 Times Seen984 Hash 5bc0a82a24abe097e6f6c1098bef9591 2da9f4ad273be56e0bfbefc24209cdeba5f9f270 0da864f7417186bd4c12d7f267eebf8fa37ea95ba2c1fcbe363485b14967e674 Loading...

	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	5.9 kB	2024-05-01	2024-05-01
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:40 Times Seen1 Hash e9b6d6e9b45b7448eb07b8b06902abb1 4f22e2e87ae3077307adaca3b9a705dfb406810a 7314d4eebbbec472750dbce515084782ef275efffda9ef53ac55b68e8a03c3bd Loading...

	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	103 B	2023-03-07	2024-05-15
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-15 18:51:06 Times Seen561 Hash b375c74456053411ec5414e21ecf870f 00a6b32dd64dbf1470f439ce9fa89c712500eebc a200a9bc6b415237c4571f14eb0eaa8f0f0fcfcd7eeafa8860441a805e4a144f Loading...

	www.hyggeligtreff.com/landers/media-registry.js	122 kB	2024-05-01	2024-05-15
Pretty URL www.hyggeligtreff.com/landers/media-registry.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 14:59:58 Last Seen2024-05-15 19:13:24 Times Seen54 Hash 7db515478934022835aa54960924e1e9 108c8d1fcf00efbc2fb81cb7ac12563ac1dcc370 12d97cd754643b6f1554ffa21d1c569554fcb17eb9477724ffff5288137b8c30 Loading...

	www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js	518 kB	2024-04-24	2024-05-15
Pretty URL www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:18:30 Last Seen2024-05-15 19:10:18 Times Seen9003 Hash e2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2	36 kB	2024-05-01	2024-05-01
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:40 Times Seen1 Hash 58aa1d34ce41eaa3db5703203d9a6536 e9da96a7be07ae89548e245513d4abccc78c9ead 32463e058c1b01b03b0716d4853a9d1a51cfae63cbdce315c70efa58300f19ff Loading...

	www.hyggeligtreff.com/landers/js/ad-provider.js	1.0 kB	2023-08-07	2024-05-15
Pretty URL www.hyggeligtreff.com/landers/js/ad-provider.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-07 11:55:39 Last Seen2024-05-15 19:13:24 Times Seen1170 Hash acd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681 Loading...

	www.google.com/recaptcha/enterprise.js	940 B	2024-04-24	2024-05-08
Pretty URL www.google.com/recaptcha/enterprise.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 09:42:33 Last Seen2024-05-08 00:10:40 Times Seen64 Hash 796b5497d3c16bce195908f13b10fc72 381a26a96cea8cd5a03d2f70599a20b38ddf9d07 2f7e1ee849a9d78c4a8716630dc03be8afd7239c3575a836618487b10aa4dcd6 Loading...

	www.hyggeligtreff.com/landers/js/vendor.js	124 kB	2024-04-05	2024-05-08
Pretty URL www.hyggeligtreff.com/landers/js/vendor.js IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-05 16:10:39 Last Seen2024-05-08 00:10:40 Times Seen60 Hash 39959a4eaa2299a3b0cf62f8b4560495 96d9ff427c2ae73112af44a976f27c5dc79f898c fb2aeda2c848164f2f2452c3d91d2b6b6e179924e3fa152cd7375bb50e94dd59 Loading...

	www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s	1.0 kB	2024-04-24	2024-05-08
Pretty URL www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 20:34:25 Last Seen2024-05-08 00:10:41 Times Seen60 Hash bd927622e1c40d420b32be0dc022e336 35f4a129b447f6d914420e59b3bbf5a7512f549f afb5abaa561bb823a0c386906899eddac8ce791e2bcb9056f57b0364d341a829 Loading...

	samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=hyggeligtreff.com&languageCode=nb&languageTerritory=NO&sessionId=69fb2ac5997c4d1da6acee52d5d89cce	121 kB	2024-05-01	2024-05-01
Pretty URL samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=hyggeligtreff.com&languageCode=nb&languageTerritory=NO&sessionId=69fb2ac5997c4d1da6acee52d5d89cce IP 35.195.163.35 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:40 Times Seen2 Hash fda60c10495e3970b387b9d4951a68fd e97f7c9a97f91b14682545983f9eb98f525d9989 218333cfc4ebfeb7e7a7a529d0d50eca62f3c22e40bf39eca222bb536cd8f2e3 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB	207 kB	2024-05-01	2024-05-01
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:41 Times Seen2 Hash 7c085d6c1b7fb13ece1d97c64d74778c 37b19a64be54c47193977846f4c7c2d44376ccac 8c700283144e01ff327d914cec61d47dc7d9ba67161a612fd36019c70a650c6d Loading...

	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	859 B	2024-03-02	2024-05-15
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-02 18:37:02 Last Seen2024-05-15 16:51:32 Times Seen20 Hash 081d4d825e9ac7b0fd185abf6a987576 2aaa3d706ef0369d9fe1e08d96c91478c3650236 7bcfa2082bded75ecd764923fd3a9e8882bda16ff8ef8535871bea9092c99503 Loading...

	www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d	308 B	2023-03-07	2024-05-15
Pretty URL www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d IP 35.227.204.77 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:09:25 Last Seen2024-05-15 19:13:24 Times Seen878 Hash 8a81377a647bdea836809865c62d171b dd72dda89aacfe74746d2c73421ea55a23ab313d 9c7aa944eeb31b5765d0c1674cdc445dff6dd572a6fe897f6d5137ce181d44a9 Loading...

	www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c	276 kB	2024-05-01	2024-05-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:41 Times Seen2 Hash bfbd1ab2cec174832c3af3fe8524caf1 6a86120bcfc5d74ac6a7a871152090aa5b62f632 ff93bf700085141908615f97d1ba2c51d0a1f69edafe20ad9b77a054d94ae5f0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d1c844ef5ccac135a2920fa79c4d0732	62 B	2024-04-30	2024-05-02
Pretty Observations First Seen2024-04-30 09:02:36 Last Seen2024-05-02 08:58:23 Times Seen479 Hash d1c844ef5ccac135a2920fa79c4d0732 21e63248ecc1ea5a12a1ce1f1824393d6b3897e8 c4ed484f4cdf08b7f13947628b1d8b38cf131bbc9b3ae688a26d32be9cf7d173 Loading...

	#2 Eval - 6578ae1fe2966177ac7847c8df9ca5d5	22 B	2024-04-30	2024-05-02
Pretty Observations First Seen2024-04-30 09:02:36 Last Seen2024-05-02 08:58:23 Times Seen482 Hash 6578ae1fe2966177ac7847c8df9ca5d5 19452e203cbf5066742303566ebde44ae653c28b 463d7bc13a94864e09f9d723e5cd171547672332776478d6c2b686c8581dfd0a Loading...

	#3 Eval - a96eaadcca73ed3818325fead088a913	22 kB	2024-05-01	2024-05-01
Pretty Observations First Seen2024-05-01 15:05:40 Last Seen2024-05-01 15:05:40 Times Seen1 Hash a96eaadcca73ed3818325fead088a913 e954c283368f088d24e33736335cc26d85cfcdfe 41dd7d6dcdb9274ca1da55032af06c61dd39c55fa98ee8ae754323848c70ee60 Loading...

	#4 Eval - 3a4306b34ef2e8a01fcb4f1deb032382	22 B	2024-04-30	2024-05-02
Pretty Observations First Seen2024-04-30 09:02:36 Last Seen2024-05-02 08:58:23 Times Seen480 Hash 3a4306b34ef2e8a01fcb4f1deb032382 9b11189a08b4622ebc5d79078650d059a39a04fa 7fb2a4c417a9a8d57cbda72028c91d4370b5ab4728f78d59a93b6f79ef4a6964 Loading...

HTTP Transactions (45)

URL IP Response Size

gryphiaastroid.com/?a=2040&c=112954&s1={var1}&s2={clickid}

15.197.214.180

302 Found

0 B

URL User Request GET HTTP/2
gryphiaastroid.com/?a=2040&c=112954&s1={var1}&s2={clickid}
IP
15.197.214.180:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectgryphiaastroid.com
Fingerprint99:39:16:67:B8:96:C2:D7:26:C5:3C:74:F0:D0:A1:5F:30:1A:A1:8B
ValidityTue, 29 Aug 2023 00:00:00 GMT - Thu, 26 Sep 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?a=2040&c=112954&s1={var1}&s2={clickid} HTTP/1.1
Host: gryphiaastroid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 01 May 2024 13:05:09 GMT
content-length: 0
location: https://cybermeetme2.com/?utm_campaign=n30CDtGmuM&s2=%7Bclickid%7D&aid=2040&s1=%7Bvar1%7D&s3=&s4=
server: nginx
set-cookie: pt30=6062b83089764a09b169087cebbb7ac7; Max-Age=2592000; Expires=Fri, 31 May 2024 13:05:09 GMT; Domain=gryphiaastroid.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=6062b83089764a09b169087cebbb7ac7; Max-Age=157680000; Expires=Mon, 30 Apr 2029 13:05:09 GMT; Domain=gryphiaastroid.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=6062b83089764a09b169087cebbb7ac7; Domain=gryphiaastroid.com; Path=/; Secure; HttpOnly; SameSite=None
ptr=pt716653c1dc6c4e1da65fb9cdd2cbc21a; Max-Age=157680000; Expires=Mon, 30 Apr 2029 13:05:09 GMT; Domain=gryphiaastroid.com; Path=/; Secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2

cybermeetme2.com/?utm_campaign=n30CDtGmuM&s2=%7Bclickid%7D&aid=2040&s1=%7Bvar1%7D&s3=&s4=

188.166.38.225

302 Found

0 B

URL User Request GET HTTP/2
cybermeetme2.com/?utm_campaign=n30CDtGmuM&s2=%7Bclickid%7D&aid=2040&s1=%7Bvar1%7D&s3=&s4=
IP
188.166.38.225:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectcybermeetme2.com
FingerprintEA:10:95:7E:57:3E:57:B5:79:B4:36:9D:18:15:16:3C:27:43:C3:19
ValidityFri, 15 Mar 2024 11:05:26 GMT - Thu, 13 Jun 2024 11:05:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?utm_campaign=n30CDtGmuM&s2=%7Bclickid%7D&aid=2040&s1=%7Bvar1%7D&s3=&s4= HTTP/1.1
Host: cybermeetme2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://trackeruptimes.com/?c=72994&s1=%7Bvar1%7D&s5=ZEU-348ae79f-84ff-4100-9737-30dc871845b4&s2=%7Bclickid%7D&s3=&s4=&a=2040
referrer-policy: no-referrer
server: nginx/1.15.7
set-cookie: sess-2dbe9c0896cf69471e4cb07941a3a69e=MTcxNDU2ODcxMHxLangxQzVPU0x4QjZVY3E4bFI2OUV1OHpqMHVrR1dtOGFlNDV3R1BaQjkyYTZFajh5UGVFTm9ZPXxEmmX94b92Q2P92lZH3sEMrTvlw8TzcYgUu2Y8ON0Ygw==; Max-Age=31536000; HttpOnly
content-length: 0
date: Wed, 01 May 2024 13:05:10 GMT
X-Firefox-Spdy: h2

trackeruptimes.com/?c=72994&s1=%7Bvar1%7D&s5=ZEU-348ae79f-84ff-4100-9737-30dc871845b4&s2=%7Bclickid%7D&s3=&s4=&a=2040

54.173.106.225

302 Found

213 B

URL User Request GET HTTP/1.1
trackeruptimes.com/?c=72994&s1=%7Bvar1%7D&s5=ZEU-348ae79f-84ff-4100-9737-30dc871845b4&s2=%7Bclickid%7D&s3=&s4=&a=2040
IP
54.173.106.225:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.trackeruptimes.com
Fingerprint1C:14:FD:D0:50:2F:E9:BD:CE:D2:CD:11:57:C3:71:03:78:87:0E:87
ValiditySun, 01 Oct 2023 01:36:11 GMT - Fri, 01 Nov 2024 01:36:10 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
213 B (213 bytes)
Hash
0235947715396f5bc45b3120d8447b55
d2bb9e5619bb23c37cad3c5992022983289d1abe
66e495390e8549e966f47241f0510356c2182314514c85c92c763757f4c0587e

HTTP Headers

GET /?c=72994&s1=%7Bvar1%7D&s5=ZEU-348ae79f-84ff-4100-9737-30dc871845b4&s2=%7Bclickid%7D&s3=&s4=&a=2040 HTTP/1.1
Host: trackeruptimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 213
Content-Type: text/html; charset=utf-8
Date: Wed, 01 May 2024 13:05:10 GMT
Location: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=WvvAkq7x1yWJHXHAghIABed3TfIDUQ20tLKrS925MZke2F7+4kixfg==; domain=.trackeruptimes.com; path=/; HttpOnly
trk=G8k1PrmDAuKajeUPaB+Q8Od3TfIDUQ20tLKrS925MZke2F7+4kixfg==; domain=.trackeruptimes.com; expires=Fri, 01-May-2026 13:05:10 GMT; path=/; HttpOnly
c21618=WvvAkq7x1yXTPNNiTfkut1edYnMLAgqUYTx+KZGVl173ascr6DxRcg==; domain=.trackeruptimes.com; expires=Fri, 31-May-2024 13:05:10 GMT; path=/; HttpOnly
Connection: close

www.hyggeligtreff.com/img/logo.png

35.227.204.77

200 OK

10 kB

URL GET HTTP/3
www.hyggeligtreff.com/img/logo.png
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced
Size
10 kB (10243 bytes)
Hash
c91961cae35a52b7287b69ea8c16b553
7a3d1fb228052b2e547f553c54213650beb8321c
6508fad6e5e405a25071061d6f3c8dcd3c4befc81312156cf6c2e85d849a8a0f

HTTP Headers

GET /img/logo.png HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: Apache/2.4.58 (Ubuntu)
vary: X-Forwarded-Proto
last-modified: Wed, 01 May 2024 12:24:37 GMT
etag: "2803-6176391e7a25c"
accept-ranges: bytes
content-length: 10243
x-ua-compatible: IE=edge,chrome=1
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.hyggeligtreff.com/landers/images/loader/loading.gif

35.227.204.77

200 OK

2.9 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/images/loader/loading.gif
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
GIF image data, version 89a, 128 x 15
Size
2.9 kB (2892 bytes)
Hash
62b08454087f1ef8b27bd2bcda330537
cac1914632f4c859f6176a84078f1017bad069f8
06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6

HTTP Headers

GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Wed, 01 May 2024 07:23:41 GMT
etag: "6631edfd-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 17670183
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/landers/js/ad-provider.js

35.227.204.77

200 OK

512 B

URL GET HTTP/3
www.hyggeligtreff.com/landers/js/ad-provider.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
ASCII text, with very long lines (979)
Size
512 B (512 bytes)
Hash
acd920e8f5657057e8003b79905c5266
cd96548060dbbc3f715cb81c3810d893eedec260
38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681

HTTP Headers

GET /landers/js/ad-provider.js HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:02:15 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 01 May 2024 07:23:53 GMT
etag: "6631ee09-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 6944728 17958408
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/landers/images/general/google-logo.svg

35.227.204.77

200 OK

688 B

URL GET HTTP/3
www.hyggeligtreff.com/landers/images/general/google-logo.svg
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
SVG Scalable Vector Graphics image
Size
688 B (688 bytes)
Hash
686f8efa6e3e28e96d1c08399e8d353d
4524589b0dceefb6ae6389f36634441df69152d5
0cf576a5dab9315daac7ffe29d29ed585e0ff9850e59408d0f25f38dc1da037b

HTTP Headers

GET /landers/images/general/google-logo.svg HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: image/svg+xml
content-length: 688
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: "6631edfc-2b0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 1307884
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/favicon/apple-touch-icon-180x180.png

35.227.204.77

404 Not Found

283 B

URL GET HTTP/3
www.hyggeligtreff.com/favicon/apple-touch-icon-180x180.png
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
HTML document, ASCII text
Size
283 B (283 bytes)
Hash
7d1e2a84d4d15ff9c6f4dca78e59bb83
e775a67adfef7676b82afef744683d505148ee4f
efae031d5c649af57403a6c1faeccbe531ab399194ba1843a05f45879d103787

HTTP Headers

GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 01 May 2024 13:05:11 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 283
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.hyggeligtreff.com/favicon/favicon.ico

35.227.204.77

404 Not Found

283 B

URL GET HTTP/3
www.hyggeligtreff.com/favicon/favicon.ico
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
HTML document, ASCII text
Size
283 B (283 bytes)
Hash
7d1e2a84d4d15ff9c6f4dca78e59bb83
e775a67adfef7676b82afef744683d505148ee4f
efae031d5c649af57403a6c1faeccbe531ab399194ba1843a05f45879d103787

HTTP Headers

GET /favicon/favicon.ico HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 01 May 2024 13:05:11 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 283
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.hyggeligtreff.com/landers/js/vendor.js

35.227.204.77

200 OK

249 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/js/vendor.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (60065)
Size
249 kB (249344 bytes)
Hash
e973dae6c9351b89a432541e0b7bafe7
4347c27a2be0db5bc76c4db9a3c2ed0d65481566
c2cf08ef78dc8bce4e25c606169c4dae275552a431c191e3c6210b32b055aec1

HTTP Headers

GET /landers/js/vendor.js HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 01 May 2024 07:23:53 GMT
etag: W/"6631ee09-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 9851514
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/landers/media-registry.js

35.227.204.77

200 OK

8.8 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/media-registry.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
8.8 kB (8780 bytes)
Hash
7db515478934022835aa54960924e1e9
108c8d1fcf00efbc2fb81cb7ac12563ac1dcc370
12d97cd754643b6f1554ffa21d1c569554fcb17eb9477724ffff5288137b8c30

HTTP Headers

GET /landers/media-registry.js HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 12:10:45 GMT
server: nginx/1.14.2
x-goog-generation: 1714550492636347
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=3xOWCg==, md5=fbUVR4k0Aig1qlSWCSTh6Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPrjhxKTKs5UqwAhtrvMfyjjYjPVp5Zsk0W8vd1PIh0U3lc80l-uPOPvimo7wOOZHVXXQ4s
last-modified: Wed, 01 May 2024 08:01:32 GMT
etag: "7db515478934022835aa54960924e1e9-gzip"
content-type: application/javascript
age: 3266
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8780
via: 1.1 google, 1.1 google

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.99

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:07:40 GMT
expires: Sat, 26 Apr 2025 06:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 457051
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/translations/nb-no2.json

35.227.204.77

200 OK

218 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/translations/nb-no2.json
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
JSON text data
Size
218 kB (218064 bytes)
Hash
03b5a86609e5b54a54f2d4aa9c4de6be
2b28f57afd7505c6b4daa22867970c84396dd642
459139ce69de1a12b7372c8ca54b3f68a0d6b3a24c499849f3daa892fdc25183

HTTP Headers

GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 11:06:14 GMT
server: nginx/1.14.2
content-length: 218064
x-guploader-uploadid: ABPtcPqdDNw6UWS8ddYYPKR9vQ0k39g68aL9M3sv1ug2FKrDa61ewrIIOtzufqXHI2ZVwUS_tVg
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
age: 7138
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google

samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=hyggeligtreff.com&languageCode=nb&languageTerritory=NO&sessionId=69fb2ac5997c4d1da6acee52d5d89cce

35.195.163.35

200 OK

14 kB

URL GET HTTP/2
samlesamtykke.com/cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=hyggeligtreff.com&languageCode=nb&languageTerritory=NO&sessionId=69fb2ac5997c4d1da6acee52d5d89cce
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type
JavaScript source, ASCII text
Size
14 kB (14208 bytes)
Hash
fda60c10495e3970b387b9d4951a68fd
e97f7c9a97f91b14682545983f9eb98f525d9989
218333cfc4ebfeb7e7a7a529d0d50eca62f3c22e40bf39eca222bb536cd8f2e3

HTTP Headers

GET /cc.js?wId=17p4ymRMihyxluI8BueDwj&domain=hyggeligtreff.com&languageCode=nb&languageTerritory=NO&sessionId=69fb2ac5997c4d1da6acee52d5d89cce HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:12 GMT
content-type: application/javascript
content-length: 14208
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/webfonts/fa-solid-900.woff2

35.227.204.77

200 OK

92 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/webfonts/fa-solid-900.woff2
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
Web Open Font Format (Version 2), TrueType, length 91792, version 1.0
Size
92 kB (91792 bytes)
Hash
6897be186b147b75c308c29eb0782f14
4190cab3384f7769ffb33f277cc20be68eb32c18
a238cffffbfea4c2868fca1b142a3a9690574537a38c857dbe309ec27b033eb3

HTTP Headers

GET /landers/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/landers/css/fontawesome-all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:02:16 GMT
server: nginx/1.14.2
content-type: application/octet-stream
content-length: 91792
last-modified: Wed, 01 May 2024 07:23:42 GMT
etag: "6631edfe-16690"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 17730217 17577456
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s

142.250.74.132

200 OK

73 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
gzip compressed data
Size
73 kB (73180 bytes)
Hash
e5e93c6dc7c37b2301018104bb992475
157a0f5136342628184961357c03d2e2d299ff37
b9bfcb0a614de3a84fcd07ce109fd9af1cc4d2fdcf0ac9e47b9730aa759329db

HTTP Headers

GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 01 May 2024 13:05:11 GMT
date: Wed, 01 May 2024 13:05:11 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/images/landing005/milf/default/slide03.jpg?geo=no

35.227.204.77

200 OK

125 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/images/landing005/milf/default/slide03.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
125 kB (125004 bytes)
Hash
e2d67c936e084960b9d055626c130dd3
e33cbe452c7b97f625a3dc3d4e713872e8f496b1
a53f1a88620987ee66801ac78009bece3a98871f098f6478abff91b805d7f481

HTTP Headers

GET /landers/images/landing005/milf/default/slide03.jpg?geo=no HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:12 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 125004
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: "6631edfc-1e84c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 1944203
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css

142.250.74.99

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:04:29 GMT
expires: Sat, 26 Apr 2025 06:04:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 457243
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js

142.250.74.99

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205803 bytes)
Hash
e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b

HTTP Headers

GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:07:40 GMT
expires: Sat, 26 Apr 2025 06:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 457052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2

142.250.74.132

200 OK

122 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
gzip compressed data
Size
122 kB (122394 bytes)
Hash
01dc5a80a0d9ce5b69fbdae90c849ab2
cd9a05b5372c9d296d9431fa6f06c1593f93d70c
545f690b8a4fb5af0371d8cd43bc0aecf7182fe39cb35fe6e48fa281667837fd

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 May 2024 13:05:12 GMT
content-security-policy: script-src 'nonce-V_6IVGCbTFuVedKogBIhjQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m

142.250.74.132

200 OK

206 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
JavaScript source, ASCII text, with very long lines (631)
Size
206 kB (205913 bytes)
Hash
e4eb924eec164dfe5fb43e5d8e6b2a2f
582bad0eac6440aa49632ca1e24d7a52a89d7d92
428ed37cf336160c986f3c470a345bd9790e95d119cfb794767637df59eb3a59

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 01 May 2024 13:05:12 GMT
date: Wed, 01 May 2024 13:05:12 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:01:56 GMT
expires: Sat, 26 Apr 2025 06:01:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 457396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:25:07 GMT
expires: Fri, 25 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 502805
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.99

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:35:26 GMT
expires: Thu, 02 May 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 502186
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/Dahk90Fxhr1MEtfyZ-6_j6N-qVuiwfy-NjSFsUln5nQ.js

142.250.74.132

200 OK

7.5 kB

URL GET HTTP/3
www.google.com/js/bg/Dahk90Fxhr1MEtfyZ-6_j6N-qVuiwfy-NjSFsUln5nQ.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
JavaScript source, ASCII text, with very long lines (17658)
Size
7.5 kB (7465 bytes)
Hash
5bc0a82a24abe097e6f6c1098bef9591
2da9f4ad273be56e0bfbefc24209cdeba5f9f270
0da864f7417186bd4c12d7f267eebf8fa37ea95ba2c1fcbe363485b14967e674

HTTP Headers

GET /js/bg/Dahk90Fxhr1MEtfyZ-6_j6N-qVuiwfy-NjSFsUln5nQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cuaHlnZ2VsaWd0cmVmZi5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=upi0r9jghb2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7465
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:51:19 GMT
expires: Sat, 26 Apr 2025 05:51:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 458033
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

samlesamtykke.com/cc.css

35.195.163.35

200 OK

3.9 kB

URL GET HTTP/2
samlesamtykke.com/cc.css
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type
assembler source, ASCII text
Size
3.9 kB (3892 bytes)
Hash
ddb6776d9e0b9844c9f57355d7492805
da918eb4fefa9d625e5858496c2c4a20ad893619
9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34

HTTP Headers

GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

0 B

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hyggeligtreff.com/
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/collector

35.195.163.35

200 OK

4.7 kB

URL POST HTTP/2
api.samlesamtykke.com/consent/collector
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type
JSON text data
Size
4.7 kB (4661 bytes)
Hash
13bbcc190c7fe76c7489b08aad14656a
dd5575dcc8445b489de95101d875e78fd08352d7
5847944aba0d237b9d758ec732dccbcba519a27441fc11418c0f610f7b4298a4

HTTP Headers

POST /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 4661
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hyggeligtreff.com/
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

371 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type
JSON text data
Size
371 B (371 bytes)
Hash
aad76f926b6c219e918916e6f25e4129
4823643373db875486f8ac895ea532106e6798d4
0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hyggeligtreff.com/
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/loadSegment

35.195.163.35

200 OK

354 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/loadSegment
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type
JSON text data
Size
354 B (354 bytes)
Hash
f3306f051731bcce1d98a030b8a2d9cf
ada4a5bb07ee1872a579a651298774329b036f43
cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5

HTTP Headers

POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hyggeligtreff.com/
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.samlesamtykke.com/consent/confirmExplicit

35.195.163.35

200 OK

0 B

URL OPTIONS HTTP/2
api.samlesamtykke.com/consent/confirmExplicit
IP
35.195.163.35:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerLet's Encrypt
Subjectsamlesamtykke.com
FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4
ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 518
Origin: https://www.hyggeligtreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 01 May 2024 13:05:13 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.hyggeligtreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/images/landing005/milf/default/slide01.jpg?geo=no

35.227.204.77

200 OK

86 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/images/landing005/milf/default/slide01.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
86 kB (86390 bytes)
Hash
6350abf9ef879c2a8e86b06a458418d8
149db15ceaa7e4dbdc053e4c0a10f22a0f993c28
3550dc96c12cc3f04b0677cedd2bd922f032b2e711741c1d8b95ae5fac8a7496

HTTP Headers

GET /landers/images/landing005/milf/default/slide01.jpg?geo=no HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1714568712.1.0.1714568712.0.0.0; _ga=GA1.1.1725700563.1714568713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:17 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 86390
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: "6631edfc-15176"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 13263739
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/landers/css/fontawesome-all.min.css

35.227.204.77

200 OK

17 kB

URL GET HTTP/2
www.hyggeligtreff.com/landers/css/fontawesome-all.min.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
gzip compressed data, from Unix
Size
17 kB (16636 bytes)
Hash
9cf42b23b5d817f55f967f9433d7f4b8
d55724c8a016be4766d87298cabf1956ed7b98a6
45bec62a8d00a92500f5e2e0cff8568a0582e18d9384a63840597fc59ec4f58c

HTTP Headers

GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: W/"6631edfc-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 13630058
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/images/landing005/milf/default/slide02.jpg?geo=no

35.227.204.77

200 OK

88 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/images/landing005/milf/default/slide02.jpg?geo=no
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size
88 kB (88055 bytes)
Hash
def57561a7dc7d1238222f49bd032100
74ecf57fa29e1ac26ef5e06a2c6661afbb5c4eb3
052e56a5eaa8f0cca7727549e65acd4dfed8c4341e765bf5b88c89b8e10e3344

HTTP Headers

GET /landers/images/landing005/milf/default/slide02.jpg?geo=no HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1714568712.1.0.1714568712.0.0.0; _ga=GA1.1.1725700563.1714568713
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:22 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 88055
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: "6631edfc-157f7"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 2197310
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d

35.227.204.77

200 OK

22 kB

URL User Request GET HTTP/2
www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
HTML document, ASCII text, with very long lines (2091)
Size
22 kB (21988 bytes)
Hash
142097d948bcf7b15e24938cb50d8162
fba374e93d10c8f2561024ed8da8886db034e4e9
94bd7a6e02d891c867ec2ff5cdd913668df95b6d1d08dd00db7676fd69776c0b

HTTP Headers

GET /landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 May 2024 13:05:10 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: hyggeligtreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1529693
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise.js

142.250.74.132

200 OK

940 B

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF3:75:C9:48:E6:A5:11:C7:87:C8:8D:9A:C4:16:F8:09:4E:88:7C:5A
ValidityMon, 08 Apr 2024 07:33:48 GMT - Mon, 01 Jul 2024 07:33:47 GMT

File type
JavaScript source, ASCII text, with very long lines (940), with no line terminators
Size
940 B (940 bytes)
Hash
796b5497d3c16bce195908f13b10fc72
381a26a96cea8cd5a03d2f70599a20b38ddf9d07
2f7e1ee849a9d78c4a8716630dc03be8afd7239c3575a836618487b10aa4dcd6

HTTP Headers

GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 01 May 2024 13:05:11 GMT
date: Wed, 01 May 2024 13:05:11 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/css/vegas.min.css

35.227.204.77

200 OK

12 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/css/vegas.min.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
ASCII text
Size
12 kB (11808 bytes)
Hash
b8abc72c16479198c206a456a02f1dca
d704f7acb4b8daf00787d4ba4f6e33b26be2a28c
a8d530eff57d706b6469ac6bdc3ce13cbfaecc832792ad7a102b19e156632fe1

HTTP Headers

GET /landers/css/vegas.min.css HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Wed, 01 May 2024 07:23:40 GMT
etag: W/"6631edfc-2e20"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 17926673
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB

142.250.74.40

200 OK

207 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (3484)
Size
207 kB (206982 bytes)
Hash
7c085d6c1b7fb13ece1d97c64d74778c
37b19a64be54c47193977846f4c7c2d44376ccac
8c700283144e01ff327d914cec61d47dc7d9ba67161a612fd36019c70a650c6d

HTTP Headers

GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 13:05:12 GMT
expires: Wed, 01 May 2024 13:05:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72554
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/css/theme/pornhub.css

35.227.204.77

200 OK

16 kB

URL GET HTTP/2
www.hyggeligtreff.com/landers/css/theme/pornhub.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
ASCII text
Size
16 kB (15541 bytes)
Hash
ef94e758d8e5cf5f39dea8566241e6f1
1fbbfd93cc5c8db172980540db0e777ee5553d94
ad05b1b370b466dc95222817e453b0f0efcfb9a9762d1b71d987d1a4a8c8356e

HTTP Headers

GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: hyggeligtreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2119518
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/css/landing005.css

35.227.204.77

200 OK

20 kB

URL GET HTTP/2
www.hyggeligtreff.com/landers/css/landing005.css
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type
ASCII text
Size
20 kB (20369 bytes)
Hash
a3c09ea165bae00ed7475566a89a7ff0
c07c5ea4bd77e178583e6067a4265804023efaae
269989bd3c970d50ea1b37a17f11ed06300c9a2c8c4592a1503550006d294e8a

HTTP Headers

GET /landers/css/landing005.css HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: hyggeligtreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 2180497
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2

www.hyggeligtreff.com/landers/js/landing005.js

35.227.204.77

200 OK

74 kB

URL GET HTTP/3
www.hyggeligtreff.com/landers/js/landing005.js
IP
35.227.204.77:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subjecthyggeligtreff.com
Fingerprint30:AD:9D:93:9E:F8:B6:66:1D:A6:80:F0:B5:36:4E:DC:7E:75:8B:D7
ValidityFri, 22 Mar 2024 21:42:59 GMT - Thu, 20 Jun 2024 22:37:12 GMT

File type

Size
74 kB (73573 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /landers/js/landing005.js HTTP/1.1
Host: www.hyggeligtreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 May 2024 13:05:11 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 01 May 2024 07:23:53 GMT
etag: W/"6631ee09-11f65"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 1075541
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google

www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c

142.250.74.40

200 OK

276 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.hyggeligtreff.com/landing5?cat=milf&pi=2040&pt1=3817092883&pe=%7bvar1%7d
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
276 kB (276414 bytes)
Hash
bfbd1ab2cec174832c3af3fe8524caf1
6a86120bcfc5d74ac6a7a871152090aa5b62f632
ff93bf700085141908615f97d1ba2c51d0a1f69edafe20ad9b77a054d94ae5f0

HTTP Headers

GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hyggeligtreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 13:05:12 GMT
expires: Wed, 01 May 2024 13:05:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94854
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML