Report - grilleriet.no/

Report Overview

Submitted URL
grilleriet.no/
IP
198.49.23.145
ASN
#53831 SQUARESPACE
Submitted
2022-12-05 00:06:50
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
images.squarespace-cdn.com	4785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	108 kB	151.101.0.238
api-cdn.purechat.com	35710	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	453 B	586 B	54.230.111.114
checkin.purechat.com	36266	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	1.6 kB	3.22.141.65
grilleriet.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	271 B	198.49.23.145
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	95.101.11.115
assets.squarespace.com	5986	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	311 kB	151.101.64.237
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.4 kB	137 kB	23.36.76.186
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	551 B	390 B	23.36.76.186
prod.purechatcdn.com	35204	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	215 kB	104.21.69.94
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.2 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
static1.squarespace.com	4133	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	903 B	128 kB	151.101.128.238
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.156
app.purechat.com	24033	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	1.3 kB	54.230.111.51
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	2.0 kB	142.250.74.168
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	979 B	55 kB	216.58.207.227
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
www.grilleriet.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	28 kB	198.185.159.145
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.131
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	31 kB	142.250.74.106
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.13.173.34
www.gasta.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	4.8 kB	198.49.23.144
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	65 kB	34.120.237.76
widgetapi.purechat.com	25344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	965 B	1.2 kB	3.136.46.125

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	grilleriet.no/	Phishing
2022-12-05	medium	www.grilleriet.no/	Phishing
2022-12-05	medium	www.grilleriet.no/api/1/performance/settings	Phishing
2022-12-05	medium	www.grilleriet.no/assets/ui-icons.svg	Phishing
2022-12-05	medium	www.grilleriet.no/api/census/RecordHit	Phishing
2022-12-05	medium	www.grilleriet.no/api/census/button-render	Phishing
2022-12-05	medium	www.grilleriet.no/api/census/button-render	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	www.grilleriet.no/	341 B	2023-03-08	2023-03-09
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-03-09 02:04:48 Times Seen1 Hash e85ba6ea3087123006231125950aa3bf c8dc1b5452575724bb9e1d88b88e3b66b420c62d 5786072cfe35a4a2f1a7b8ec6981db85138cf7d99448b40e42d4619e56d43169 Loading...

	www.grilleriet.no/	611 B	2023-03-08	2023-03-09
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-03-09 02:04:48 Times Seen1 Hash 2e2652658e6e93a6803b139b4bd8f6ff 8d542bfd23e8594b2cef282f9d731ce4c1219b90 9b0c0603989be4504541460644bc44b693ec7e2471cd21f7acb6ec4fe89e3c1b Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 07:45:14 Times Seen36970313 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.grilleriet.no/	87 B	2023-03-08	2023-05-28
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-05-28 00:54:48 Times Seen7 Hash f3d623832094a9895848021495a66ef7 c9ac61aa389d181c18ac60b64c4615e7062cde6d 7cd867fa6c5af246fc290d8d76cb79373ee20aca8f72cb123638e1de83f9bafe Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-20
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-20 07:43:12 Times Seen259934 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	use.typekit.net/ik/qIPyNNkRcm5w-Z8CsTOvexpOKTn8WnsheZtMOFdO69jfenXffFHN4UJLFRbh52jhWDm8wRIowQqD5QbXZQy8wQByZQj3FDjk5g7pMPG0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOeZuS1F8ifu1Sc8Cdemk-AmXOAooO1FUiABkZWF3jAF8OcFzdPU1Sc8Cdemk-AmXOcozOeUzjhBC-eNDifUaiaS0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOYiaiko1Sc8Cdemk-AmXOcozJyTyjaml-AtlSY4zOAmtiY4yOAFzdcs8d1F8ZfGHfHOOMsMMeMb6MKGHfHROMsMMeM96MKGHfHnOMsMMeMj6MKGHfH2OMsMMeMS6MKGHfH1OMsMMeMv6MKGHfHzOMsMMegM6MKGHfHYOMsMMegI6MTMgxnfnvb9.js	18 kB	2023-03-08	2023-03-09
Pretty URL use.typekit.net/ik/qIPyNNkRcm5w-Z8CsTOvexpOKTn8WnsheZtMOFdO69jfenXffFHN4UJLFRbh52jhWDm8wRIowQqD5QbXZQy8wQByZQj3FDjk5g7pMPG0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOeZuS1F8ifu1Sc8Cdemk-AmXOAooO1FUiABkZWF3jAF8OcFzdPU1Sc8Cdemk-AmXOcozOeUzjhBC-eNDifUaiaS0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOYiaiko1Sc8Cdemk-AmXOcozJyTyjaml-AtlSY4zOAmtiY4yOAFzdcs8d1F8ZfGHfHOOMsMMeMb6MKGHfHROMsMMeM96MKGHfHnOMsMMeMj6MKGHfH2OMsMMeMS6MKGHfH1OMsMMeMv6MKGHfHzOMsMMegM6MKGHfHYOMsMMegI6MTMgxnfnvb9.js IP 23.36.76.186 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-03-09 02:04:48 Times Seen1 Hash 7cb5ef94abf3879a427e27d529fa0112 4053696d0aa1b0eac57a3f18d12bda4b0056bca1 5e1cc129e79f819dd56042f31565c9591b0319e3be26ffd04c11d08c1f3dce6c Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-04-20
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-20 07:32:38 Times Seen61271 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.grilleriet.no/	66 B	2023-03-08	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2024-04-19 12:39:00 Times Seen433 Hash 70f7fff26032498282dcf1adcfaef8d0 ba04ef7d640bea4d5e968a667b6b043767320dd9 0749a6cc61f598ee49fdeb5f4990b48aef8915cf3bdad118cf2854f8cf0a715f Loading...

	www.grilleriet.no/	29 B	2023-03-07	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:55 Last Seen2024-04-19 12:39:00 Times Seen430 Hash 719ee01870b508d0b034b8ed51515f27 149d8623595f393195882ccf97c6daedf690bba2 a0bedd0351ff7370c92b7a3a26427f1da78e499ac26a32af3ad80a615685246f Loading...

	assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js	82 kB	2023-03-07	2024-03-15
Pretty URL assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-03-15 16:47:28 Times Seen8 Hash 782269a1e71d6fa339f3fe3e96260920 19a1d6f5381a86ac75c007a853c8d68d4184f224 6a801f781b109838b64c593ffbabaeb97e553d349540a9636cb63e23a8479423 Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-20cedcfc598ca1dec0f52-min.en-US.js	45 kB	2023-03-08	2023-03-08
Pretty URL assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-20cedcfc598ca1dec0f52-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:15 Last Seen2023-03-08 19:53:27 Times Seen1 Hash 1c552c03ddc9822371a78dd256d5ba31 2f258079005de85b5d1b4010cc50eea19a9291e8 21095d08db8a04bb9f7a41a5613f9aa2223eef6c027f3fe9cf62d281eef1460c Loading...

	www.grilleriet.no/	60 B	2023-03-08	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2024-04-19 12:38:59 Times Seen438 Hash bd415e0aa496bafa18e59be2bd38ff98 31f8eefdeb21aa1cbbf2ea95f1d1ea3055a5682e b38b93569d686f5f5b60c8246d65c3323710b3a0550088dba17179b036c60d60 Loading...

	www.gasta.no/assets/translation.js	22 kB	2023-03-08	2023-05-28
Pretty URL www.gasta.no/assets/translation.js IP 198.49.23.144 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-05-28 00:54:48 Times Seen16 Hash ecef8f8f3d8906928ebdc3968d982f28 e6d15b7b7627a8e98e47485fe1460eed0cda19cd 0e0574fa12a9c9d714d296440e34adf46a7366b149f866f11bf17728d5c760e0 Loading...

	www.grilleriet.no/	36 B	2023-03-07	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-19 20:36:35 Times Seen2958 Hash 601c0c3e24e3606964ca32d91379dce9 2c152d5e3710bc557ad3ee0ec7b20f130b94f485 20f8600ab480a8bff52bfb40664d6957de6a16cbc27de2fc82fa885f04894d35 Loading...

	www.grilleriet.no/	281 B	2023-03-08	2023-08-31
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-08-31 16:35:43 Times Seen2259 Hash 5ace63ebc677de878edab6c947cc77e1 0022feb816370d481d0e9d0f847dc7f228b58fe6 0914d0d55fd79135650411f8c1ac910ba5213361c86b48497bae2ba8b5e6cba2 Loading...

	www.grilleriet.no/	267 B	2023-03-08	2023-06-14
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-06-14 13:50:27 Times Seen1604 Hash 32812ecd2213da79fab4c849e4348d49 003c04a0b2038245b4f1eda0a57127f590a6aba9 2e219e63d373f75a0ed24eab1a00dc28dc9266fd31ab47f301a029cfb129f658 Loading...

	www.grilleriet.no/	253 B	2023-03-08	2023-03-11
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-03-11 23:44:07 Times Seen1 Hash 68f95493e0311b94dc22f91c05fbf4f6 2b98552644d55a76d43fc9e91d31b24545f16368 5e906e0977629894a329df9aceb3d0f1e50b60d81fa34113e84392f81bde28b8 Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js	246 kB	2023-03-08	2023-06-14
Pretty URL assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:47:17 Last Seen2023-06-14 13:50:27 Times Seen3259 Hash 480da4ad3059ed58de466b941207675a 6b9d4c7868bb9456a7177bf9e51412f50ce4f86f a02052cb1eaf0f90100a8d53276c90b181e9a26ba962412fe649bcd41c6c7bcc Loading...

	www.grilleriet.no/	261 B	2023-03-08	2023-03-12
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-03-12 06:11:34 Times Seen1 Hash 642e18d11f19f1e09c2d3c8ea3450696 04854f660ddbcec752871f580b187338f863da98 8248cd7c18f11ab39f7a296f64a0141274e15b792e1de0d730135ee7d0d7ac84 Loading...

	www.grilleriet.no/	25 B	2023-03-07	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-19 20:36:34 Times Seen2994 Hash 672d0394545f391429e65f55351f3def 19ee8affc3c7b4dad3a3c0565fc5bcd5c21d982c 1b7e492754babf86a84991d9e4aa1094333c6607dbb57414a964773ccb9dca46 Loading...

	www.grilleriet.no/	15 kB	2023-03-08	2023-03-08
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-03-08 16:24:54 Times Seen1 Hash e1362cdf1a1173dada0c147e6d7f27f0 2ca5ed5a548fd408f73ef97c806967f5ecdf8cba 04105594236fb4fbac5b192bb618d6f0e28974d8a7ae456eb3e901afdd9625fe Loading...

	app.purechat.com/VisitorWidget/WidgetScript	12 kB	2023-03-08	2023-07-03
Pretty URL app.purechat.com/VisitorWidget/WidgetScript IP 54.230.111.51 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-07-03 15:38:39 Times Seen105 Hash 6d472c54bbcb8a12a1f1d8f4906802b1 1b4b038008632f00b03a4b87ecb06eacc0baf595 bd5dc24d0d7546794cc14f03e25888cd27e55f31c1abc66f212142d1d9e04050 Loading...

	assets.squarespace.com/universal/scripts-compressed/performance-8a62d2805270e36d43ce5-min.en-US.js	41 kB	2023-03-08	2023-03-11
Pretty URL assets.squarespace.com/universal/scripts-compressed/performance-8a62d2805270e36d43ce5-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-03-11 23:44:07 Times Seen1 Hash cdbe95029ec599b1801f5594b687fae2 c3091ed2656116cdc5af187b5433179d8d345503 faf635994f4729276f5c81999452a3be52bd0c2841215529466e966f0fd13913 Loading...

	assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js	122 kB	2023-03-08	2023-03-12
Pretty URL assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-12 06:11:34 Times Seen1 Hash 6f93cf4c60218081f58088d4f73968b0 ddce90baa882af788518dedb298aa617b42e7d56 eaf57fca6ef0d907fc24c69ea4bd4dbf7117d8344e894e2dbf691e515d38298a Loading...

	www.grilleriet.no/	247 B	2023-03-08	2023-03-11
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-03-11 23:44:07 Times Seen1 Hash 24857ea45bcec4f023bade01f9a6bc5a 3abd96c8e00d2c59e2249d40a3fdb0689f7cb949 35eacb6aad71f611ede72c8fbf44002ad11e3f9d45d28bbb5f5ab3524b12b346 Loading...

	www.grilleriet.no/	1.8 kB	2023-03-08	2023-03-09
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-03-09 02:04:48 Times Seen1 Hash c320021ab349681792dda3e529079347 30638b72c2ca022cc1a213a670d8aaf4c24651f1 bd7dd90eb7bd9e1e97510e2f338e0cd9a06345e0df8bb44f1b7dd98c52e7e170 Loading...

	app.purechat.com/version?_=_&callback=_WidgetJPCB_Version	234 B	2023-03-08	2023-07-03
Pretty URL app.purechat.com/version?_=_&callback=_WidgetJPCB_Version IP 54.230.111.51 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-07-03 15:38:40 Times Seen93 Hash b4a0d7af6df32f8107e975582c098ef3 f279529c58935943c51d2a5b8a38db1ff10ade04 643f76818cce37b7ab044eadec562ad4abbdc9db1416cbb3ecef58ce15c3f38b Loading...

	www.grilleriet.no/	30 B	2023-03-07	2024-04-19
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:57 Last Seen2024-04-19 20:36:34 Times Seen3510 Hash c87d02e7372c6e84060d7bcf881b3dec 7be6f1e4003b5f4fc1509041afbbee9e6bebf0a7 d71b6207a995d6220a6798b3f42c40e651277c483c7745c41f714bf4bf0d06aa Loading...

	www.grilleriet.no/	263 B	2023-03-08	2023-03-08
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:15 Last Seen2023-03-08 19:53:27 Times Seen1 Hash a8839130a46c7adcf866608353e33f7c ed063a62ba59bdf8db1c80ef40719706f43c319e 508a8b35c6c3553b11d5a0f3d0d6f9eb8a78c5f5f8d0b8f71461fffc617af98f Loading...

	www.grilleriet.no/	237 B	2023-03-08	2023-03-10
Pretty URL www.grilleriet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:58:04 Last Seen2023-03-10 02:35:09 Times Seen1 Hash 7686a2fb9a6377e0645714e030934298 9adab00388e203922a7c27a97602c8c94fb9b923 dba5813ca90d259f04f7d0157625fe9e3f56d9f7624f2e7beaa8e19e2f7f6582 Loading...

HTTP Transactions (72)

URL IP Response Size

grilleriet.no/

198.49.23.145

301 Moved Permanently

0 B

URL HTTP/1.1
grilleriet.no/
IP
198.49.23.145:0
ASN
#53831 SQUARESPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Age: 377462
Content-Length: 0
Date: Wed, 30 Nov 2022 15:15:35 GMT
Location: https://www.grilleriet.no/
Server: Squarespace
Set-Cookie: crumb=BQvWGT2qcJ/jNjdjYjEyODFhMWVkMDJhZTY2OTg3ZGYwM2FjZjUx;Path=/
X-Contextid: 6x2U02is/J4eIKvt5

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3157
Expires: Mon, 05 Dec 2022 00:59:15 GMT
Date: Mon, 05 Dec 2022 00:06:38 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 878
Cache-Control: max-age=124757
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:38 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 10:45:55 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 23:18:25 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2893
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4165
Expires: Mon, 05 Dec 2022 01:16:03 GMT
Date: Mon, 05 Dec 2022 00:06:38 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: y3q18wBmC60OjKQE0Z19JHkxaJG0P+/bCk9+DPBp9jYdaJzKbN0C5mER06Y7fQa/pTeMjznt0LsLE6OPuZT8kg==
x-amz-request-id: TYYBB1G7T0Y39V6Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 23:47:45 GMT
age: 1133
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 00:06:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 23:11:19 GMT
cache-control: public,max-age=3600
age: 3319
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.grilleriet.no/

198.185.159.145

200 OK

17 kB

URL HTTP/2
www.grilleriet.no/
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15615), with CRLF, LF line terminators
Size
17 kB (16865 bytes)
Hash
fe7b599cbd82c7564ef0e3a1113a355d
4daa2eab92a386e788f9bccb07310be6a9d26790
b3ef918d76ecae454c05418b6b4a9e91acf5f6ac6021db811fe8b364c0b94aba

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
accept-ranges: bytes
age: 1168
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Sun, 04 Dec 2022 23:47:10 GMT
etag: W/"092fafadd32653cdd8a5ba144cff82be"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
set-cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj;Path=/
strict-transport-security: max-age=0
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: 0XlTyEL2/f9MErEzc
content-length: 16865
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 864
Cache-Control: max-age=119677
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:38 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:21:15 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js

151.101.64.237

200 OK

29 kB

URL HTTP/2
assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (32788), with NEL line terminators
Size
29 kB (29224 bytes)
Hash
03e5ef7c77d113abf6178fce61ec6344
9c8e7c2834de6e3fc7bb6e856a7691c474d98b7d
5ce90067054cd21e935b79fb096722b5f615b39d845c941800c516424c41d000

HTTP Headers

GET /@sqs/polyfiller/1.2.2/modern.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
server: UploadServer
expires: Thu, 16 Mar 2023 05:45:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Sep 2021 20:21:24 GMT
etag: "03e5ef7c77d113abf6178fce61ec6344"
content-type: text/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 22789245
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 26217
x-timer: S1670198799.028727,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 29224
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.squarespace.com/universal/scripts-compressed/performance-8a62d2805270e36d43ce5-min.en-US.js

151.101.64.237

200 OK

12 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/performance-8a62d2805270e36d43ce5-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (40617)
Size
12 kB (12228 bytes)
Hash
5099c15db463ee3b8bdd55606d290ac5
4b6afa1d5d8d900c9d54bfe48ddc69476d48b0cc
e63b98458ab3431e4571268fd35454ca2a5dbf932ef55ad20703c86d1a44193e

HTTP Headers

GET /universal/scripts-compressed/performance-8a62d2805270e36d43ce5-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 30 Nov 2023 21:04:13 GMT
last-modified: Wed, 30 Nov 2022 17:26:13 GMT
etag: "5099c15db463ee3b8bdd55606d290ac5"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 356545
x-served-by: cache-iad-kjyo7100057-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17459
x-timer: S1670198799.035729,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 12228
X-Firefox-Spdy: h2

use.typekit.net/ik/qIPyNNkRcm5w-Z8CsTOvexpOKTn8WnsheZtMOFdO69jfenXffFHN4UJLFRbh52jhWDm8wRIowQqD5QbXZQy8wQByZQj3FDjk5g7pMPG0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOeZuS1F8ifu1Sc8Cdemk-AmXOAooO1FUiABkZWF3jAF8OcFzdPU1Sc8Cdemk-AmXOcozOeUzjhBC-eNDifUaiaS0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOYiaiko1Sc8Cdemk-AmXOcozJyTyjaml-AtlSY4zOAmtiY4yOAFzdcs8d1F8ZfGHfHOOMsMMeMb6MKGHfHROMsMMeM96MKGHfHnOMsMMeMj6MKGHfH2OMsMMeMS6MKGHfH1OMsMMeMv6MKGHfHzOMsMMegM6MKGHfHYOMsMMegI6MTMgxnfnvb9.js

23.36.76.186

200 OK

6.8 kB

URL HTTP/2
use.typekit.net/ik/qIPyNNkRcm5w-Z8CsTOvexpOKTn8WnsheZtMOFdO69jfenXffFHN4UJLFRbh52jhWDm8wRIowQqD5QbXZQy8wQByZQj3FDjk5g7pMPG0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOeZuS1F8ifu1Sc8Cdemk-AmXOAooO1FUiABkZWF3jAF8OcFzdPU1Sc8Cdemk-AmXOcozOeUzjhBC-eNDifUaiaS0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOYiaiko1Sc8Cdemk-AmXOcozJyTyjaml-AtlSY4zOAmtiY4yOAFzdcs8d1F8ZfGHfHOOMsMMeMb6MKGHfHROMsMMeM96MKGHfHnOMsMMeMj6MKGHfH2OMsMMeMS6MKGHfH1OMsMMeMv6MKGHfHzOMsMMegM6MKGHfHYOMsMMegI6MTMgxnfnvb9.js
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (2330)
Size
6.8 kB (6809 bytes)
Hash
9ebaf999bca9ceb0cfb978c19fcfce2e
3e031620198eb5d5e84ea52e2a3f20840be7d170
7515f86ac7164e9575a69944acad4441af141990ea5e6e08851e58911ca5236a

HTTP Headers

GET /ik/qIPyNNkRcm5w-Z8CsTOvexpOKTn8WnsheZtMOFdO69jfenXffFHN4UJLFRbh52jhWDm8wRIowQqD5QbXZQy8wQByZQj3FDjk5g7pMPG0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOeZuS1F8ifu1Sc8Cdemk-AmXOAooO1FUiABkZWF3jAF8OcFzdPU1Sc8Cdemk-AmXOcozOeUzjhBC-eNDifUaiaS0Z1mkShmXOAik-AUCZW4TZWbld1q0SaBujW48Sagyjh90jhNlOYiaiko1Sc8Cdemk-AmXOcozJyTyjaml-AtlSY4zOAmtiY4yOAFzdcs8d1F8ZfGHfHOOMsMMeMb6MKGHfHROMsMMeM96MKGHfHnOMsMMeMj6MKGHfH2OMsMMeMS6MKGHfH1OMsMMeMv6MKGHfHzOMsMMegM6MKGHfHYOMsMMegI6MTMgxnfnvb9.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6809
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.squarespace.com/universal/scripts-compressed/common-7160848b22dbb79648a1c-min.en-US.js

151.101.64.237

200 OK

230 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-7160848b22dbb79648a1c-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
230 kB (230301 bytes)
Hash
d4c1306f709fe29a8a0713d63713c21b
05086c5e42f04412bf09ac614d617e443f759068
06cfbc681aea2595cf1bca5568dd2be0a8dd3997cb2340e5e12b85adbf485144

HTTP Headers

GET /universal/scripts-compressed/common-7160848b22dbb79648a1c-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 02 Dec 2023 17:42:01 GMT
last-modified: Fri, 02 Dec 2022 16:57:54 GMT
etag: "d4c1306f709fe29a8a0713d63713c21b"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 195876
x-served-by: cache-iad-kcgs7200131-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 79
x-timer: S1670198799.033009,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 230301
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-20cedcfc598ca1dec0f52-min.en-US.js

151.101.64.237

200 OK

15 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-20cedcfc598ca1dec0f52-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (45204)
Size
15 kB (15336 bytes)
Hash
7da110ea84f5e8034aa0019e6babf3bf
f3a62d3f5eb3a767b8da021bc2459740cd0bb553
0445849921213e94c921d2863505a37cc569d1610e6804a2336fcfbdc20b866d

HTTP Headers

GET /universal/scripts-compressed/extract-css-runtime-20cedcfc598ca1dec0f52-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 02 Dec 2023 22:55:24 GMT
last-modified: Fri, 02 Dec 2022 22:14:44 GMT
etag: "7da110ea84f5e8034aa0019e6babf3bf"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 177075
x-served-by: cache-iad-kjyo7100143-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 6992
x-timer: S1670198799.050555,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15336
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js

151.101.64.237

200 OK

18 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
18 kB (18492 bytes)
Hash
bf4aa98d55eee8cce95ff27af398f599
eccfc800014e449cdfe1365dacc541f817cdd178
4d08cfbf346295d8cc4012bd9d3dc9fa797969a811898f2f83c5291158954f8d

HTTP Headers

GET /universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 21 Nov 2023 17:23:55 GMT
last-modified: Mon, 21 Nov 2022 16:42:30 GMT
etag: "bf4aa98d55eee8cce95ff27af398f599"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 1147364
x-served-by: cache-iad-kjyo7100046-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 26484
x-timer: S1670198799.049706,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 18492
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js

142.250.74.106

200 OK

30 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32058)
Size
30 kB (30306 bytes)
Hash
fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d

HTTP Headers

GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 18:54:48 GMT
expires: Thu, 30 Nov 2023 18:54:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 364311
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static1.squarespace.com/static/ta/55f0a9b0e4b0f3eb70352f6d/349/scripts/site-bundle.js

151.101.128.238

200 OK

43 kB

URL HTTP/2
static1.squarespace.com/static/ta/55f0a9b0e4b0f3eb70352f6d/349/scripts/site-bundle.js
IP
151.101.128.238:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (32033)
Size
43 kB (42907 bytes)
Hash
cb0d78e537f1ff28d694132d86e8e82f
c550a7aae81b884499ae658649e3920f4f224914
64ae376eff7cfd47213298fbd6f652e80e204a74643dc3df93e3a091dff59d31

HTTP Headers

GET /static/ta/55f0a9b0e4b0f3eb70352f6d/349/scripts/site-bundle.js HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
etag: W/"33717d3279e74c9fe5e9bb7a75b6c3fb--gzip"
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: 7ZijBvDa/isigMyNX
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 19125188
x-served-by: cache-dfw18677-DFW, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 26683
x-timer: S1670198799.081441,VS0,VE0
vary: Accept-Encoding
tracepoint: Fastly
content-length: 42907
X-Firefox-Spdy: h2

static1.squarespace.com/static/sitecss/5e219193944e8e11ae607628/146/55f0aac0e4b0f0a5b7e0b22e/5e21943ca917cc6d14a15a3a/349/site.css

151.101.128.238

200 OK

84 kB

URL HTTP/2
static1.squarespace.com/static/sitecss/5e219193944e8e11ae607628/146/55f0aac0e4b0f0a5b7e0b22e/5e21943ca917cc6d14a15a3a/349/site.css
IP
151.101.128.238:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (32309)
Size
84 kB (83864 bytes)
Hash
48d83f9033d7ab1510303ca043e80850
a9fd069cc4b9772224fe05f83122cdfa5f1c30d6
ba7a5bd9c0b78a0c4ff39e653ba149da1ec17596b9bdadf951712b15b2e0d14c

HTTP Headers

GET /static/sitecss/5e219193944e8e11ae607628/146/55f0aac0e4b0f0a5b7e0b22e/5e21943ca917cc6d14a15a3a/349/site.css HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: text/css; charset=UTF-8
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: DrOm29wm/iN42xdW1
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 669589
x-served-by: cache-dfw-kdfw8210105-DFW, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 27, 1
x-timer: S1670198799.083456,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 83864
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.13.173.34

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.173.34:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d/l5z1+NZ1fPsiV1bS+wkA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7zsat4thncDVe14KSPGt+Fv/xV4=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gasta.no/assets/translation.js

198.49.23.144

200 OK

4.3 kB

URL HTTP/2
www.gasta.no/assets/translation.js
IP
198.49.23.144:0
ASN
#53831 SQUARESPACE

File type
Unicode text, UTF-8 text
Size
4.3 kB (4253 bytes)
Hash
53171b24821e9de589fe47fca48fb77d
9e1999cfd1add6a66bba55e7dcf4826525ea0101
b140b81424585dd23f6dbb5653516cdfe4816109f02eb6c446dd70ac04814a54

HTTP Headers

GET /assets/translation.js HTTP/1.1
Host: www.gasta.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 194186
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: application/javascript
date: Fri, 02 Dec 2022 18:10:13 GMT
etag: W/"d0fe1b778623749ef8c3c91efaddc092--gzip"
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: cache
server: Squarespace
set-cookie: crumb=BQdEPSZlpi8ZODQzM2UxMTA2YzM0MGI2NGU5YmI3OWRmNzAwNGQz;Path=/
strict-transport-security: max-age=0
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: qoZ8yCik/nQT5TFXI
content-length: 4253
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/54c60b21e4b0d7a7fa84e91b/1423558396957-F29ROLFS63I554CWMRHD/Grilleriet_logo.png?format=1500w

151.101.0.238

200 OK

7.1 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/54c60b21e4b0d7a7fa84e91b/1423558396957-F29ROLFS63I554CWMRHD/Grilleriet_logo.png?format=1500w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 483 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7083 bytes)
Hash
20315c1aeac7ec09bd8248b5c720c6ff
1bd3f21530d2d4391d69fabb889ea8b9b05b8f18
9e22b7b401c5ccd5ae43f50ca731505f845c29597c97dc7e080e81ec44a0ba6f

HTTP Headers

GET /content/v1/54c60b21e4b0d7a7fa84e91b/1423558396957-F29ROLFS63I554CWMRHD/Grilleriet_logo.png?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CIe3toGTousCEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 478680
x-served-by: cache-iad-kjyo7100169-IAD, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 43, 1
x-timer: S1670198800.601251,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 7083
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5C4SL3K

142.250.74.168

404 Not Found

1.6 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5C4SL3K
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1582 bytes)
Hash
d2eecb98874c63ba8025ffeef19c75c9
08b2434fcebc43eacea165993bed50b4d73c82b3
ff34aee34c006924b532190b064bc0254e433d4e16ab6983ac0183eaf115929c

HTTP Headers

GET /gtm.js?id=GTM-5C4SL3K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 00:06:39 GMT
content-type: text/html; charset=UTF-8
server: Google Tag Manager
content-length: 1582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

use.typekit.net/af/8d1fa8/00000000000000003b9acb1e/27/l?subset_id=2&fvd=n6&v=3

23.36.76.186

200 OK

18 kB

URL HTTP/2
use.typekit.net/af/8d1fa8/00000000000000003b9acb1e/27/l?subset_id=2&fvd=n6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17720, version 1.0\012- data
Size
18 kB (17720 bytes)
Hash
fe11a9981599583d3ebae4175cf104c7
836e540eb5988e094e50fadd53f452314da6a9ad
2208d34efbdf77e18cbde4d3008bb4bbf4c0700667aecab083a6bb67c38ac97c

HTTP Headers

GET /af/8d1fa8/00000000000000003b9acb1e/27/l?subset_id=2&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17720
etag: "bb748dc43cd9a078a1f29e61a609dbe33a270f11"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/c4767b/00000000000000003b9acb20/27/l?subset_id=2&fvd=n7&v=3

23.36.76.186

200 OK

18 kB

URL HTTP/2
use.typekit.net/af/c4767b/00000000000000003b9acb20/27/l?subset_id=2&fvd=n7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17812, version 1.0\012- data
Size
18 kB (17812 bytes)
Hash
f95c849ac799b06b813fbae9fbf12309
e230fb7078d016a05e14d9b50baddd105da833b7
531f3cc871f2ffa5481cbbde8ba1808d9c5da63865f88216a12246fde7d18c4b

HTTP Headers

GET /af/c4767b/00000000000000003b9acb20/27/l?subset_id=2&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17812
etag: "a87f8ae27dd2ad2e14fd9ba3bb61b34e10c08e96"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/08f3e7/00000000000000003b9acb1f/27/l?subset_id=2&fvd=i6&v=3

23.36.76.186

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/08f3e7/00000000000000003b9acb1f/27/l?subset_id=2&fvd=i6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 18632, version 1.0\012- data
Size
19 kB (18632 bytes)
Hash
ffabaac2fca0a1374f77974cf0edd54f
99eeb9a34591d051b4ecd393e4de2ac6a9cbee03
796edd0cb9fc0f860593ff1497499ac6a1337d7e9b22bd4aad1ac4fd649be145

HTTP Headers

GET /af/08f3e7/00000000000000003b9acb1f/27/l?subset_id=2&fvd=i6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 18632
etag: "4ba4826cfa0090ac1a51e569af73fb7311b5f74e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/289661/00000000000000003b9acb21/27/l?subset_id=2&fvd=i7&v=3

23.36.76.186

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/289661/00000000000000003b9acb21/27/l?subset_id=2&fvd=i7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 18664, version 1.0\012- data
Size
19 kB (18664 bytes)
Hash
baf6a75586cff976fc36afe4a7039d67
7589940a4773183d87d2a99ea488cb9ea5d744ef
31cb310ff45b855e98d5b04e09a39ec7fbb0e6feb65162bb4eb291bbeed9e0f7

HTTP Headers

GET /af/289661/00000000000000003b9acb21/27/l?subset_id=2&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 18664
etag: "0a07e6b0f9778e66a619ab6cbaf9dbe9153a98f4"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/af/b8e425/00000000000000003b9acb1c/27/l?subset_id=2&fvd=n5&v=3

23.36.76.186

200 OK

18 kB

URL HTTP/2
use.typekit.net/af/b8e425/00000000000000003b9acb1c/27/l?subset_id=2&fvd=n5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17948, version 1.0\012- data
Size
18 kB (17948 bytes)
Hash
de373ae924e07b9c5436aac1dce6c47a
7ad31c2aa629b43acb0441070fa8695461578eef
ab4c9f97834c00944bd4d719b948bdac61533f461d2210abbde75cc39c7311c2

HTTP Headers

GET /af/b8e425/00000000000000003b9acb1c/27/l?subset_id=2&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17948
etag: "55f9ffb726ea9ef19dee5c48c3f4fef0cc905812"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/f2b2eb/00000000000000003b9acb1a/27/l?subset_id=2&fvd=n4&v=3

23.36.76.186

200 OK

18 kB

URL HTTP/2
use.typekit.net/af/f2b2eb/00000000000000003b9acb1a/27/l?subset_id=2&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17984, version 1.0\012- data
Size
18 kB (17984 bytes)
Hash
49e80822df3668a8cda6a8cd0d6ed600
051cbaba203842ee9a810c810238142afb8f9b2c
3a518aab25adf72cfc490f9e79fa26528e0293a801dc4d202a2c584fa5cfbba3

HTTP Headers

GET /af/f2b2eb/00000000000000003b9acb1a/27/l?subset_id=2&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17984
etag: "287d1d3d5c8daf4980dd4bad12a851512a424c33"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

www.grilleriet.no/api/1/performance/settings

198.185.159.145

200 OK

53 B

URL HTTP/2
www.grilleriet.no/api/1/performance/settings
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
1951564dd07cfd08f9539b786b20a594
00e1efdf0a108769d0f744ddfbb7c89e179387af
9195d7401f2acf7d18d75ecbc9bf2f86195f1ba780fb391cd0b36351872a3f57

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /api/1/performance/settings HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj; ss_cvr=baad2e0c-51fe-465a-b2fb-129aef1c7ea8|1670198797137|1670198797137|1670198797137|1; ss_cvt=1670198797137
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json
date: Mon, 05 Dec 2022 00:06:39 GMT
server: Squarespace
vary: Accept-Encoding, User-Agent
x-contextid: 0XlTyEL2/I8cTHGXc
content-length: 53
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

images.squarespace-cdn.com/content/v1/5e219193944e8e11ae607628/1584105038748-WFSF3F9GNLJ27MXR0Z7W/grilleriet-3219.jpg?format=1500w

151.101.0.238

200 OK

98 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e219193944e8e11ae607628/1584105038748-WFSF3F9GNLJ27MXR0Z7W/grilleriet-3219.jpg?format=1500w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1500x1000, components 3\012- data
Size
98 kB (98236 bytes)
Hash
0c29303b3c4feb9a29af54d71ceb242f
f2c2d69c333e82dde6dbb639b326daea108ca4ef
c781181e1b1518324fb07c4fc4d9f3a9a932753025fb8d67059f0e355a83e7b6

HTTP Headers

GET /content/v1/5e219193944e8e11ae607628/1584105038748-WFSF3F9GNLJ27MXR0Z7W/grilleriet-3219.jpg?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/jpeg
access-control-allow-origin: *
etag: CPO+yPzBi+sCEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 203465
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 4
x-timer: S1670198800.716819,VS0,VE0
vary: Accept-Encoding
tracepoint: Fastly
content-length: 98236
X-Firefox-Spdy: h2

www.grilleriet.no/assets/ui-icons.svg

198.185.159.145

200 OK

8.5 kB

URL HTTP/2
www.grilleriet.no/assets/ui-icons.svg
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (688)
Size
8.5 kB (8459 bytes)
Hash
7f34731b5af0235414438765be9f5fbd
546d551ab05880986d007b148e921b1dc694cad9
ded1e2af9a5d3937cc8d26fbb6d0212702f611ca62607c4eb3e7b4dc3b196d9f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/ui-icons.svg HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj; ss_cvr=baad2e0c-51fe-465a-b2fb-129aef1c7ea8|1670198797137|1670198797137|1670198797137|1; ss_cvt=1670198797137
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 376599
cache-control: public, max-age=94608000
content-type: image/svg+xml
date: Wed, 30 Nov 2022 15:29:59 GMT
etag: W/"e0dcf5978615db20a22f6a23c5a1e81d"
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: 0XlTyEL2/pzgvOIVH
content-length: 8459
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcecodepro/v22/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2

216.58.207.227

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/sourcecodepro/v22/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19680, version 1.0\012- data
Size
20 kB (19680 bytes)
Hash
0628e64d7cdd00a4c6c41b7554ecf8b1
0dee04b143193572e8421021f5fe03b006fa4530
1c2e64053b56afdcc933af75555920cf89c08b8ca04961f4815abdbd0bdcdbc3

HTTP Headers

GET /s/sourcecodepro/v22/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 22:22:33 GMT
expires: Wed, 29 Nov 2023 22:22:33 GMT
cache-control: public, max-age=31536000
age: 438246
last-modified: Tue, 23 Aug 2022 18:25:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.grilleriet.no/api/census/RecordHit

198.185.159.145

200 OK

17 B

URL HTTP/2
www.grilleriet.no/api/census/RecordHit
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /api/census/RecordHit HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
X-CSRF-Token: Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj
Content-Length: 784
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj; ss_cvr=baad2e0c-51fe-465a-b2fb-129aef1c7ea8|1670198797137|1670198797137|1670198797137|1; ss_cvt=1670198797137
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:06:39 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: 0XlTyEL2/Ln2mnIeY
content-length: 17
X-Firefox-Spdy: h2

www.grilleriet.no/api/census/button-render

198.185.159.145

200 OK

17 B

URL HTTP/2
www.grilleriet.no/api/census/button-render
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /api/census/button-render HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-CSRF-Token: Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj
Content-Length: 471
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj; ss_cvr=baad2e0c-51fe-465a-b2fb-129aef1c7ea8|1670198797137|1670198797137|1670198797137|1; ss_cvt=1670198797137
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:06:39 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: 0XlTyEL2/QvYxhdVH
content-length: 17
X-Firefox-Spdy: h2

use.typekit.net/af/60ef7f/00000000000000003b9acb1d/27/l?subset_id=2&fvd=i5&v=3

23.36.76.186

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/60ef7f/00000000000000003b9acb1d/27/l?subset_id=2&fvd=i5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 18856, version 1.0\012- data
Size
19 kB (18856 bytes)
Hash
cb7292d89ce69b7ee7d8df47ecad15f4
0dcd751e8590b2e01cef15a388797d9175afde3e
edf2a486aa65a7349abf33b99a62d5b12ac0ea14b97bb989fb532575c75b001c

HTTP Headers

GET /af/60ef7f/00000000000000003b9acb1d/27/l?subset_id=2&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 18856
etag: "ca7abe2f03e29980c31769ef612acecd81fa1603"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

www.grilleriet.no/api/census/button-render

198.185.159.145

200 OK

17 B

URL HTTP/2
www.grilleriet.no/api/census/button-render
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /api/census/button-render HTTP/1.1
Host: www.grilleriet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-CSRF-Token: Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj
Content-Length: 421
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: crumb=Beg9AS60cP3aOWY2ODk3NTE2OGI0MmRkMjI3Yjg1ZWI1NTNlNzRj; ss_cvr=baad2e0c-51fe-465a-b2fb-129aef1c7ea8|1670198797137|1670198797137|1670198797137|1; ss_cvt=1670198797137
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:06:39 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: 0XlTyEL2/rfC5X80Q
content-length: 17
X-Firefox-Spdy: h2

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2

216.58.207.227

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size
34 kB (33580 bytes)
Hash
848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:32:08 GMT
expires: Wed, 29 Nov 2023 18:32:08 GMT
cache-control: public, max-age=31536000
age: 452071
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p.typekit.net/p.gif?s=2&k=646866_5e219193944e8e11ae607628&ht=tk&h=www.grilleriet.no&f=26018.26024.26026.26016.26025.26027.26017&a=646866&js=1.21.0&app=typekit&e=js&_=1670198797301

23.36.76.186

200 OK

35 B

URL HTTP/2
p.typekit.net/p.gif?s=2&k=646866_5e219193944e8e11ae607628&ht=tk&h=www.grilleriet.no&f=26018.26024.26026.26016.26025.26027.26017&a=646866&js=1.21.0&app=typekit&e=js&_=1670198797301
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=2&k=646866_5e219193944e8e11ae607628&ht=tk&h=www.grilleriet.no&f=26018.26024.26026.26016.26025.26027.26017&a=646866&js=1.21.0&app=typekit&e=js&_=1670198797301 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Mon, 05 Dec 2022 00:06:39 GMT
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e219193944e8e11ae607628/1579263481576-6H84H4BLF4THYVW3J4EF/favicon.ico?format=100w

151.101.0.238

200 OK

1.2 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e219193944e8e11ae607628/1579263481576-6H84H4BLF4THYVW3J4EF/favicon.ico?format=100w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Size
1.2 kB (1186 bytes)
Hash
e8a2b53c0db3e47bad467aaf45772489
f222b6a2b074080688b41d65c4e414e347fc9de0
6a1a5f1a3ba06bacc1a2d964d970cbab2f63ad5c62695359f512d78330d74108

HTTP Headers

GET /content/v1/5e219193944e8e11ae607628/1579263481576-6H84H4BLF4THYVW3J4EF/favicon.ico?format=100w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CKzd1ZXCi+sCEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 196250
x-served-by: cache-iad-kiad7000109-IAD, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 28, 1
x-timer: S1670198800.851884,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 1186
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb764de8591ca0ead3f3dc6e35a31027
3d9de3bcd4f04330fd329e31879b49c3986b783a
4fc4c7e744fc3c827bf2cc73b87737f3f9aed48652f8dc3ec5a7a33edbce3b4a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136173
Date: Mon, 05 Dec 2022 00:06:40 GMT
Etag: "638c95c2-1d7"
Expires: Tue, 06 Dec 2022 13:56:13 GMT
Last-Modified: Sun, 04 Dec 2022 12:42:42 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UdDvo0L_E4LrFJQQrPnnGNjw8g0dxEoPs4ESp-yo6L0W-Dq8QR0uOw==
Age: 4411

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4714
Expires: Mon, 05 Dec 2022 01:25:14 GMT
Date: Mon, 05 Dec 2022 00:06:40 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4714
Expires: Mon, 05 Dec 2022 01:25:14 GMT
Date: Mon, 05 Dec 2022 00:06:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10031 bytes)
Hash
bb029b41d342a82250aef6d6f713be6e
cd754bb6094d2e456b95dce8daace45a0de8a121
c16e364547c9e7a3c487b614073d59c7c495c5e5387b75136afab0dc68bebca4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: ca6c11c5-8842-4ffb-bb9e-5351c4e60c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjY0CGUVIAMFxog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ad4e6-4282be9f505aa5764e9b1fa2;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 04:47:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vg9n0d9YqjfrKwJHGGcztV4gsGENhNYUuC1HUmWFsxRlDdMSpV4IQw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 15:58:47 GMT
age: 29273
etag: "cd754bb6094d2e456b95dce8daace45a0de8a121"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6430 bytes)
Hash
3c36448c65274ebbe1eb21e3bf02385e
e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28
6f17788a394f1305755805a1b92117b1c1a03a1e3a075cb97a0da5184d574553

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6430
x-amzn-requestid: ae2ec151-d383-4554-9ac2-3d204701251c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ttFDKoAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1324-15aebb1a06253068472a6ab0;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hEiLpBd0Tubj3-Wgqh_jpK6XEekyrHfuQxpVD_JLlNSAQj41XK_1EA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:15 GMT
age: 8065
etag: "e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396c9419-24ff-48bc-bf81-361b151c281b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6133 bytes)
Hash
f3d863be9bd5d072e85b8976251ce342
b9c67cf9a5ae7ec4c7bf8e8b857918be9277a140
f188fb7575c4b8662acfe2a6682559d50a12430c116605391dd77257bc11a60b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396c9419-24ff-48bc-bf81-361b151c281b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6133
x-amzn-requestid: d2c60baf-1d2e-4b1f-9c08-2adf0aa458a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUXHcPIAMFl5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-3ddc6f0428790a9d5f253825;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HVO2yJJggGy-dou69DXIb254DYhzLj31b9-lyIOyIvQAQGGqQfmSSg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:17:42 GMT
age: 74938
etag: "b9c67cf9a5ae7ec4c7bf8e8b857918be9277a140"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3707 bytes)
Hash
d7bde76a4dbab17f37747e7da55ad924
56ee7aa6cf94570b1218ef6e767a7036d0b8900f
bd8320fe10dc06061008034cfd1ca9f17e941b2b859b8dd12f23bcac35746aab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3707
x-amzn-requestid: e9d4dc01-cb68-471b-8da4-c6f170248387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_xhEm-IAMFRNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d133c-5414a54751e2569f639d0dea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:38:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _nGZrHCvmP-EKAQG20l1ayIftZ4spFGPuG--vyTpMhbNa9L3pIWhCA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:29 GMT
age: 8291
etag: "56ee7aa6cf94570b1218ef6e767a7036d0b8900f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12830 bytes)
Hash
5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CYvQg9Tc0rQB9_DoDW4RoLx2GEdMSEaXViCY3qXbijd0P5mMSZWE6Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:35:27 GMT
age: 73873
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7853 bytes)
Hash
dafdb4fe91795a9e16baebb085ccd818
f5ed5d03e6969f81349ad78fde0e71390a4ed391
f535ce45d68317bad15513d3cd3d21d2c0ef12e93d6ac19cc07b704ee1651f51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7853
x-amzn-requestid: fa079a7e-1e93-41d6-bb16-2703077a0cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGrKEGFoAMFnBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6388517a-076131847c129c197e84901b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:02:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cri6Vf6-INRisbFQ4ITZ7f8RIvomQXQ-TjkjWAOkkUhmI1yhHIbTYA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 08:10:52 GMT
age: 57348
etag: "f5ed5d03e6969f81349ad78fde0e71390a4ed391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

widgetapi.purechat.com/api/visitorwidget/widgetversions/93c3abdd-7e74-4658-a94a-533b5b2c6f25

3.136.46.125

200 OK

408 B

URL HTTP/2
widgetapi.purechat.com/api/visitorwidget/widgetversions/93c3abdd-7e74-4658-a94a-533b5b2c6f25
IP
3.136.46.125:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Size
408 B (408 bytes)
Hash
c1c1a7df2cf6a1f42e7ae368f216a9ec
899c9185997f7cec2135e73888358f72f0f8619a
fb2e97b79ca3d6b0622326dd8e6c4f0cf58dec628f879f725088c4abd7d1c7d9

HTTP Headers

GET /api/visitorwidget/widgetversions/93c3abdd-7e74-4658-a94a-533b5b2c6f25 HTTP/1.1
Host: widgetapi.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:06:40 GMT
content-type: application/json; charset=utf-8
content-length: 408
server: Kestrel
cache-control: max-age=60
set-cookie: thirdPartyCookiesEnabled=true; expires=Tue, 06 Dec 2022 00:06:40 GMT; domain=purechat.com; path=/
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.grilleriet.no
access-control-expose-headers: X-Requires-Auth
X-Firefox-Spdy: h2

app.purechat.com/version?_=_&callback=_WidgetJPCB_Version

54.230.111.51

200 OK

234 B

URL HTTP/2
app.purechat.com/version?_=_&callback=_WidgetJPCB_Version
IP
54.230.111.51:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
b4a0d7af6df32f8107e975582c098ef3
f279529c58935943c51d2a5b8a38db1ff10ade04
643f76818cce37b7ab044eadec562ad4abbdc9db1416cbb3ecef58ce15c3f38b

HTTP Headers

GET /version?_=_&callback=_WidgetJPCB_Version HTTP/1.1
Host: app.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 234
last-modified: Wed, 26 Oct 2022 22:16:40 GMT
x-amz-version-id: null
server: AmazonS3
date: Sun, 04 Dec 2022 23:56:17 GMT
cache-control: public,max-age=900
etag: "b4a0d7af6df32f8107e975582c098ef3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LxqjaBmo-LpZSks9l1nfhmOltUmXHCZx6zTxajGBWekt3esuB24s3g==
age: 623
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1534af0d5eb7a9eba5bb944fd925fe74
9b25b6ebb7bd32cc2ded973090a07e4e2840d405
48f6135d3d4de946f328ccf7cbae89cb89d6680ca9f05e1535f5fa7e495c4edb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3501
Cache-Control: max-age=93172
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:06:40 GMT
Etag: "638bf157-116"
Expires: Tue, 06 Dec 2022 01:59:32 GMT
Last-Modified: Sun, 04 Dec 2022 01:01:11 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 278

prod.purechatcdn.com/assets/legacy.13836.js

104.21.69.94

200 OK

214 kB

URL HTTP/2
prod.purechatcdn.com/assets/legacy.13836.js
IP
104.21.69.94:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (62090)
Size
214 kB (213815 bytes)
Hash
cad00ec9657253fb4101fe0ae02a9777
9607ad91b89c5d02459ca92100c1cd1d9d083a4a
9e310a5e30b506e7974481e25dee8fc4541cb987d2e06e573b8393c97568410c

HTTP Headers

GET /assets/legacy.13836.js HTTP/1.1
Host: prod.purechatcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:06:40 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000
last-modified: Wed, 26 Oct 2022 22:14:59 GMT
x-amz-version-id: null
etag: W/"08628f1866a4b4967b3bf05a842bef24"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gVxVgzZlzFAiYBb8iIb3Re_62ArDo_WP_iV92KVb8SQalYODKWHM0w==
age: 3376177
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NanqPn7Dkl9CP1o%2BJucPzh15c5mFwMrF%2BG3OSfXDQSDeJB0PrUI8TIvBV66y1LYKV1Lj6JznAVnwpOJ9JlbROphSWs5pZL1ZMQ%2B5tXxli7MgL75G1z7gvUqGxMZsqE8fG7IEeGsDXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 774889889ae70b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

widgetapi.purechat.com/api/VisitorWidget/ChatAvailable/424714/93c3abdd-7e74-4658-a94a-533b5b2c6f25/?externalRequest=false&t=1670198798493

3.136.46.125

200 OK

13 B

URL HTTP/2
widgetapi.purechat.com/api/VisitorWidget/ChatAvailable/424714/93c3abdd-7e74-4658-a94a-533b5b2c6f25/?externalRequest=false&t=1670198798493
IP
3.136.46.125:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
00daedd7a4fce557d26a433af56d6bd9
425607d3be4e6c8f626f6c6b3a4664119866ab4b
d7450ec03c0b60d25bbf75478f20764499dac4f7c671ec12edf3a3677384f101

HTTP Headers

GET /api/VisitorWidget/ChatAvailable/424714/93c3abdd-7e74-4658-a94a-533b5b2c6f25/?externalRequest=false&t=1670198798493 HTTP/1.1
Host: widgetapi.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:06:41 GMT
content-type: application/json; charset=utf-8
content-length: 13
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://www.grilleriet.no
access-control-expose-headers: X-Requires-Auth
X-Firefox-Spdy: h2

checkin.purechat.com/api/checkin

3.22.141.65

204 No Content

0 B

URL HTTP/2
checkin.purechat.com/api/checkin
IP
3.22.141.65:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/checkin HTTP/1.1
Host: checkin.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.grilleriet.no/
Origin: https://www.grilleriet.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 05 Dec 2022 00:06:41 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.grilleriet.no
X-Firefox-Spdy: h2

checkin.purechat.com/api/checkin

3.22.141.65

200 OK

114 B

URL HTTP/2
checkin.purechat.com/api/checkin
IP
3.22.141.65:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
114 B (114 bytes)
Hash
e29f9202024eccb7e0aa5167a5bd4579
da4a1f529d93325e5dc51c45ac29bebdce795ed5
208e455fd377beb9e8a54da86633a1f9e7b8982c83f3dfed416bb627457fe185

HTTP Headers

POST /api/checkin HTTP/1.1
Host: checkin.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 204
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:06:42 GMT
content-type: application/json; charset=utf-8
content-length: 114
server: Kestrel
set-cookie: _PCCSID_424714=9f5fbf6b-2455-455e-a4f7-fd167b7300d3; expires=Mon, 05 Dec 2022 00:26:42 GMT; domain=purechat.com; path=/; secure; samesite=none
_PCCID=0d98cb82-4e2e-46d1-b1f5-372f7ec52163; expires=Sat, 04 Dec 2027 00:06:42 GMT; domain=purechat.com; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-origin: https://www.grilleriet.no
X-Firefox-Spdy: h2

checkin.purechat.com/api/checkin

3.22.141.65

204 No Content

0 B

URL HTTP/2
checkin.purechat.com/api/checkin
IP
3.22.141.65:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/checkin HTTP/1.1
Host: checkin.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.grilleriet.no/
Origin: https://www.grilleriet.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Mon, 05 Dec 2022 00:06:47 GMT
server: Kestrel
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.grilleriet.no
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10396 bytes)
Hash
24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 12:09:06 GMT
age: 43061
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

checkin.purechat.com/api/checkin

3.22.141.65

200 OK

94 B

URL HTTP/2
checkin.purechat.com/api/checkin
IP
3.22.141.65:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
94 B (94 bytes)
Hash
9399ca4256c4e02f8898a202af4ad6b1
b5ca28ab74b93a86a5601490b665578df1def6bb
653621d8de473b0e85e967f564e66bbe0aaf73a5a2b0319840e67331d1d3beab

HTTP Headers

POST /api/checkin HTTP/1.1
Host: checkin.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 315
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Cookie: _PCCSID_424714=9f5fbf6b-2455-455e-a4f7-fd167b7300d3; _PCCID=0d98cb82-4e2e-46d1-b1f5-372f7ec52163
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:06:47 GMT
content-type: application/json; charset=utf-8
content-length: 94
server: Kestrel
access-control-allow-credentials: true
access-control-allow-origin: https://www.grilleriet.no
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/common-vendors-cf28b9adb429a6e878890-min.en-US.js

151.101.64.237

200 OK

0 B

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-vendors-cf28b9adb429a6e878890-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /universal/scripts-compressed/common-vendors-cf28b9adb429a6e878890-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 30 Nov 2023 21:04:12 GMT
last-modified: Wed, 30 Nov 2022 16:44:28 GMT
etag: "af3c38d29483d4b8b4569357ffe8c8fc"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 356546
x-served-by: cache-iad-kiad7000093-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 123
x-timer: S1670198799.058728,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 168623
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js

151.101.64.237

200 OK

0 B

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 21:48:02 GMT
last-modified: Tue, 22 Nov 2022 21:08:15 GMT
etag: "a2aba54ac71d7b847b67a49a66957627"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 1045116
x-served-by: cache-iad-kjyo7100036-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 23811
x-timer: S1670198799.064051,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 70636
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js

151.101.64.237

200 OK

0 B

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 21 Nov 2023 17:23:55 GMT
last-modified: Mon, 21 Nov 2022 16:44:05 GMT
etag: "c790849e8518999c8594a0bbb6597784"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:06:39 GMT
age: 1147364
x-served-by: cache-iad-kcgs7200082-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 23914
x-timer: S1670198799.042902,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 87950
X-Firefox-Spdy: h2

app.purechat.com/VisitorWidget/WidgetScript

54.230.111.51

200 OK

0 B

URL HTTP/2
app.purechat.com/VisitorWidget/WidgetScript
IP
54.230.111.51:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /VisitorWidget/WidgetScript HTTP/1.1
Host: app.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Wed, 26 Oct 2022 22:16:19 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Sun, 04 Dec 2022 22:01:46 GMT
cache-control: public,max-age=14400
etag: W/"6d472c54bbcb8a12a1f1d8f4906802b1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W6pQBDNKH1BI3TLIKy5qXcGa4PMmW9i54qpnXXmh98IDQgHK7EuvGg==
age: 7494
X-Firefox-Spdy: h2

api-cdn.purechat.com/api/visitorwidget/widget/93c3abdd-7e74-4658-a94a-533b5b2c6f25/34

54.230.111.114

200 OK

0 B

URL HTTP/2
api-cdn.purechat.com/api/visitorwidget/widget/93c3abdd-7e74-4658-a94a-533b5b2c6f25/34
IP
54.230.111.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/visitorwidget/widget/93c3abdd-7e74-4658-a94a-533b5b2c6f25/34 HTTP/1.1
Host: api-cdn.purechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.grilleriet.no
Connection: keep-alive
Referer: https://www.grilleriet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Mon, 23 May 2022 04:37:33 GMT
server: Kestrel
cache-control: public, max-age=31536000
access-control-allow-credentials: true
access-control-allow-origin: https://www.grilleriet.no
access-control-expose-headers: X-Requires-Auth
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uVfzjGodFIKvZYOtqnyO4-fRL_qXc5r8AH0qdsxvT9rnjSphJx-d2g==
age: 16918147
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP