| www.4hm3c.com/scripts/un981c6l?a_aid=447fc4d7&a_bid=4fc4400d&chan=SPRIN-20 |  104.21.3.117 | 301 Moved Permanently | 209 B |
URL User Request GET HTTP/2www.4hm3c.com/scripts/un981c6l?a_aid=447fc4d7&a_bid=4fc4400d&chan=SPRIN-20 IP104.21.3.117:443
CertificateIssuerGoogle Trust Services LLC Subject4hm3c.com FingerprintC6:DA:05:0C:3A:76:31:9D:5A:B9:F2:A3:7C:69:8A:A0:63:7F:E2:B7 ValiditySun, 23 Apr 2023 23:59:32 GMT - Sat, 22 Jul 2023 23:59:31 GMT
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hashe0adb993f4090d5a3922262a01e433cf 728e0f5008b860f964f5b3319ff5a6295fdb036f b4bda9b83d5f02ab60248d99603bf78292554602ec1cc4dbfea3d4cb3ac3cc80
GET /scripts/un981c6l?a_aid=447fc4d7&a_bid=4fc4400d&chan=SPRIN-20 HTTP/1.1
Host: www.4hm3c.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 10 Jun 2023 13:56:47 GMT
content-type: text/html; charset=UTF-8
location: https://jdsyw33.com/g?visitorid=f9918a7464de4f47ddeec3301b6N0l30&refid=447fc4d7&bannerid=4fc4400d&extra_data1=&extra_data2=
cache-control: private, no-cache, no-store, max-age=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
set-cookie: PAPAffiliateId=447fc4d7; Expires=Sat, 10 Jun 2023 14:01:47 GMT; path=/; Secure; SameSite=None
PAPVisitorId=f9918a7464de4f47ddeec3301b6N0l30; Expires=Sun, 09 Jun 2024 13:56:47 GMT; path=/; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2FqrDb%2FUgBgT9dmWrTN7nOmPjkJr6EYqSwx0JTqcLX5VJ0Y99D983e4IurZKRdrIBe83XbEfLVHnjQ%2FvyT1IfaMFDxQ9JXBb0%2B9PCp04WuGIMB73K0sZucCCqauMID%2Bx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521ea70834b4fa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ |  54.230.80.227 | | 471 B |
URL ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash3de1131c130541a3dfb8dd7e4a26beaa 39008dc02f4be0c2a27f39eacd50f6cfe798d5e6 a3964d79eb8dc08fb7ba9fa7be21c5e173622ef9f428d0f74f99f0ec9cf704f6
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 10 Jun 2023 13:56:48 GMT
Last-Modified: Sat, 10 Jun 2023 13:31:52 GMT
Server: ECAcc (nya/7993)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 13Pw-WwFmDD0PU6GzbIC3y9ecR9h8zBB_LtS6pnq8qoKLZy3FVzZGw==
Age: 1496
|
|
| go.bluelinknow.com/t/clk?id=rxHwLpLtYnu0M6hq&s1=6484812014a17e00013caddc&s2=447fc4d7&s8= | 18.233.114.199 | 302 Found | 0 B |
URL User Request GET HTTP/2go.bluelinknow.com/t/clk?id=rxHwLpLtYnu0M6hq&s1=6484812014a17e00013caddc&s2=447fc4d7&s8= IP18.233.114.199:443
CertificateIssuerAmazon Subject*.redlinknow.com Fingerprint5F:68:F5:F1:60:F9:C1:7A:F3:D9:54:6E:6D:40:2C:38:13:45:2B:24 ValidityThu, 23 Feb 2023 00:00:00 GMT - Wed, 14 Feb 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=rxHwLpLtYnu0M6hq&s1=6484812014a17e00013caddc&s2=447fc4d7&s8= HTTP/1.1
Host: go.bluelinknow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 10 Jun 2023 13:56:48 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream=
server: nginx/1.14.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"1X2TE7Ku\"\054 {\"lebj\": \"488O5aL\"}]:1q7z5E:i39K-OwzUxgWYd8F10k3uksfMkI"; expires=Mon, 10 Jul 2023 13:56:48 GMT; Max-Age=2592000; Path=/
ydt_a31a0322edef4efaa328c3e667d70925="[\"822561d9-37d4-41aa-941b-13e99597a30a\"]:1q7z5E:A_AwYXYAMzR_WU0ME6vu97SgmkE"; expires=Mon, 10 Jul 2023 15:56:48 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png | 104.26.8.128 | 200 OK | 9.2 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Hashf4a32eb2e5f203dab4882f7b7581b06e 8d51933205a3ed27c2c6bd0182142d6f8432d929 83ec91fc25549922aa0f873a3dc6a3e71f83d8b8cd75fb018475762be29a894e
GET /prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: image/png
content-length: 9232
last-modified: Wed, 26 Oct 2022 14:16:18 GMT
etag: "63594132-2410"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KN8yj3IwN6jMLmaob5aHYYKvcJVNJRLQLTIlVR8sG71nRn1L2XUt3GeY0EklvyHlrUfF0%2FJEB7OsNaXHkjEoUbrsZcK1qfC9BlfCgGW7iCtn31KX1ooazFFxJmoK1cRrS%2FkY6C6RKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e50b521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/e94acaa4a4639e77543b9035a1bb9771.png | 104.26.8.128 | 200 OK | 1.5 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/e94acaa4a4639e77543b9035a1bb9771.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 111 x 75, 8-bit colormap, non-interlaced\012- data Hashe94acaa4a4639e77543b9035a1bb9771 03a7c168585cf5ff29784d4c042041a78fa39ea1 244d6c76eb4b51de3683b616dfc37e268c988366e7acd9fadd8aa18305ffd88a
GET /prod/landings/nb_no/unlock-content-now/images/e94acaa4a4639e77543b9035a1bb9771.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: image/png
content-length: 1538
last-modified: Wed, 26 Oct 2022 14:16:18 GMT
etag: "63594132-602"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30NCJjousNytQR9NExLp3CjB3sDt%2FjorIIRZoLld2yn1A9AIO%2FACilefGamQsYJuV%2FIEgzSHgV6UWJmvGJwXNHCwZ7nqc6XH9tbDcP5aOHhQv5PmygJDchr6cVec1UzMufxXnwwgqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e55b521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/card-success-img.png | 104.26.8.128 | 200 OK | 5.5 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/card-success-img.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 225 x 155, 8-bit/color RGBA, non-interlaced\012- data Hashd4e9852797d8344d7cf548f0e995b3f9 24d735802263b5a4e213808f063768c2cab64526 df5b88dcdde24064831192cf91da1261929edd43ccd2109c9f48a657b6347dca
GET /prod/landings/assets/layout28/layout28/images/common/card-success-img.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: image/png
content-length: 5532
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
etag: "6482f0f4-159c"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hyo09gUtz9oe9Rm9n0TH9wLu9pQOJmPCwlRLAxkTsu%2FNH89ISYK9g%2BOFZbDy4VS%2FapJownrMWeD6jHGF5gyML6QHdFOjGjVZWfiZ5ZAXz6aDPBLlpSUSzBFFZShe22pipYHnmV68%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e56b521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/email-existed-img.png | 104.26.8.128 | 200 OK | 6.0 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/email-existed-img.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 225 x 155, 8-bit/color RGBA, non-interlaced\012- data Hash51655898e6c2520a08a65e0eef729ea5 d05f1470dca9a5ef27bfa1f78db4b8ec569d9047 8f1ad81b346d3ee6d36229c7542e9bbd051e58de0c434b7f97cd01bddcd9d678
GET /prod/landings/assets/layout28/layout28/images/common/email-existed-img.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: image/png
content-length: 6014
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
etag: "6482f0f4-177e"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gPRVzjlo%2BcyaGuCzqnzSjYfY%2FR3q9zJaid8rOIAcflJBMVFlF9wDLNANbtrBNMLw%2FmKDkHqjR6UcJ9FPithm7xbhjWnTRlWFekPpR92DcwQkKp7JkkNF8Pb3ZeL038abovIsIW5ePw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e5bb521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/card-declined-img.png | 104.26.8.128 | 200 OK | 5.6 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/images/common/card-declined-img.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 225 x 155, 8-bit/color RGBA, non-interlaced\012- data Hash78b2d1575168ed90d031a3dca86563ca b1b24b07ae83ec93b2e0f224973053abaa8c7acc a8b45a0089c9ee6f6e4afd93b2468f0e2b6e970d02745747ebc93440e6baacc1
GET /prod/landings/assets/layout28/layout28/images/common/card-declined-img.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: image/png
content-length: 5580
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
etag: "6482f0f4-15cc"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=481xoOEKUoOOoGSIfBnxmsSwok7dU8tPC%2FaABSNrXzC1dp5XdVmaQ55KI02h4BOdWVBowgPDQTvIrjwXFm16x0%2Fxf8iMSGDc161U4ufAojkr2K8fz%2FLb15%2BMIgwVML%2BcdXDBLEMuJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e58b521-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash039bd5f5536d1b489d46e52d9cd5a21e 88770d7c23bb9aefa7d8fad6262332c0a682a0d3 6195b2c8747988942a35a477b811d323d137e697b23c6670d093a1b10c4879c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Jun 2023 13:56:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700 | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700 IP142.250.74.106:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File typegzip compressed data, max compression\012- data Hash825c78879575783810487ea373f66f76 15f420562d8e3384a83ddaf439d6881bd7bd66fd 5f0e15c31dd9810cea37a1735007e48db5263f92766e8bd9c6d4c0cefe70f730
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.content-loads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Jun 2023 13:56:49 GMT
date: Sat, 10 Jun 2023 13:56:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/fonts/poppins/poppins-600.woff2 | 104.26.8.128 | 200 OK | 8.0 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/fonts/poppins/poppins-600.woff2 IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7988, version 1.0\012- data Hash087457026965f98466618a478c4b1b07 00b024ccb35e3694de662d180d6ea7f56de6d654 b93b9165269362989e2855d0bf0ae232d7193a45c43627b2d03b26d7eb98263b
GET /prod/landings/assets/layout28/layout28/fonts/poppins/poppins-600.woff2 HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://get-booksnow.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.content-loads.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: application/octet-stream
content-length: 7988
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
etag: "6482f0f4-1f34"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 827
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GG7QA%2FEtXwhKZzrRXYDcV9SADXjSiW%2Fe0tf0aiqdBg%2BLLs66UXhE%2Fk%2BriX6yeMllKTGhsmdvjd%2FlICeFxqSvSe7F7MuTn7X1%2FfsGIlijYYWE1yHQmQA6wvnKhk4LavbSGD%2BgYNZnhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb3da6bb521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/fonts/poppins/poppins-regular.woff2 | 104.26.8.128 | 200 OK | 7.9 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/fonts/poppins/poppins-regular.woff2 IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data Hash9ed361bba8488aeb2797b82befda20f1 6f80d965a066aff81c0a344d4b7297bd009cc099 41e46faff74c6a77d581689ec35eb040f6c96d17f4d2c5b25dccd42ed498b01c
GET /prod/landings/assets/layout28/layout28/fonts/poppins/poppins-regular.woff2 HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://get-booksnow.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.content-loads.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: application/octet-stream
content-length: 7900
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
etag: "6482f0f4-1edc"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 827
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8iF%2FMpDULjKthCDDleXomEaFqjHayBFseDtTcyeyDDWzkpkEQJPWYf0Eoa6v8DJhG8%2BZmNs%2FKBliymM2Cym1eEaBBsMpnpKO%2F7As4%2FDaGfvuTIG8zdDfLIcm%2Be0KntxFJ%2FMkF4u99w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb3da72b521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png | 104.26.8.128 | 200 OK | 9.2 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Hashf4a32eb2e5f203dab4882f7b7581b06e 8d51933205a3ed27c2c6bd0182142d6f8432d929 83ec91fc25549922aa0f873a3dc6a3e71f83d8b8cd75fb018475762be29a894e
GET /prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-type: image/png
content-length: 9232
last-modified: Wed, 26 Oct 2022 14:16:18 GMT
etag: "63594132-2410"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1159
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ajm4pLT8HR8Hpht4krJiVxWKVRGAgh%2FEitCr%2B3OKvrSE6pgl6%2BXQNu%2FTbm967egL4VnYeo04Pa2b%2BKDWjBcpckzMw%2FmXBn25cLRepSGXzOMXy9B3ImdrRDQagLkjK6MiQfRzGLEzlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb5eca3b521-OSL
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png | 104.26.8.128 | 200 OK | 9.2 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Hashf4a32eb2e5f203dab4882f7b7581b06e 8d51933205a3ed27c2c6bd0182142d6f8432d929 83ec91fc25549922aa0f873a3dc6a3e71f83d8b8cd75fb018475762be29a894e
GET /prod/landings/nb_no/unlock-content-now/images/f4a32eb2e5f203dab4882f7b7581b06e.png HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-type: image/png
content-length: 9232
last-modified: Wed, 26 Oct 2022 14:16:18 GMT
etag: "63594132-2410"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1159
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OsP2lVN60cqE%2FOcvekmrR10gArqrLSThsh5GnR6EQd1ZQqqja%2B7EKGZYThhrc0h2wNQZa5Xj6pIOiiWf4mAMEMS%2Br50xEoJNM2gOkR8AerF6JS84ASeMaDrbWvtg55oBKsZ%2B1aqELQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb5eca4b521-OSL
X-Firefox-Spdy: h2
|
|
| event.secureanalytic.com/register/event_log/w6g0q907e9 | 172.64.128.12 | 200 OK | 0 B |
URL OPTIONS HTTP/2event.secureanalytic.com/register/event_log/w6g0q907e9 IP172.64.128.12:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com Fingerprint78:6B:AF:02:E6:AC:5E:05:5E:BE:23:A3:64:95:13:99:68:93:2C:6A ValidityThu, 08 Jun 2023 08:18:07 GMT - Wed, 06 Sep 2023 08:18:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /register/event_log/w6g0q907e9 HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://get-booksnow.com/
Origin: https://get-booksnow.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://get-booksnow.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tf3S3uqkKUb4D34OpdU2dzBSjeiTk7AHWOf1DzhqWFE2MrkNg2zLTO9Pv1jFsTPhMc9gAhZPU1deWU2wg0v%2BvTxfsRmXY98J5GyMcymZhHdeDlVjiz6t8NYTYpI8JH8IQDH55cUyiy%2FFQeA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521eb5f8aa4136-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| event.secureanalytic.com/register/event_log/w6g0q907e9 | 172.64.128.12 | 200 OK | 0 B |
URL OPTIONS HTTP/2event.secureanalytic.com/register/event_log/w6g0q907e9 IP172.64.128.12:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com Fingerprint78:6B:AF:02:E6:AC:5E:05:5E:BE:23:A3:64:95:13:99:68:93:2C:6A ValidityThu, 08 Jun 2023 08:18:07 GMT - Wed, 06 Sep 2023 08:18:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /register/event_log/w6g0q907e9 HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://get-booksnow.com/
Content-type: application/json
Content-Length: 103
Origin: https://get-booksnow.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params:
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: DENY
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://get-booksnow.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJnoqq6HfFii3JdWglQsG5FnZfCHWvqufstCVJaB8vv9bIZCUU%2Bc9d%2BMbyoWrjQAqQn2Bqagm6itTLot2bm%2BVsVPLq9Kb2yIeP1CouMCpxxhRsbcArvbw4lxdXCAtwh9Lq4p6Zid%2BiLZsEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521eb83c9a4136-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/main/styles.css | 104.26.8.128 | 200 OK | 75 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/main/styles.css IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (65328) Hashbaddaf70bd6882c3686cc7a56c39d9fa 1f59bcf33a3a1a1b261aae82df88df442519b27d e3e16c2155413ea674b0dc5c15ff92ef57aba3abfa0ea34673e7cf4c33d12647
GET /prod/landings/assets/layout28/layout28/styles/main/styles.css HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: text/css
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=96829
etag: W/"6482f0f4-17a3d"
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IuLzGhLgIKPjVzpEHMmped1oPFHPKhBhRIUJd7ExRZQuVbpRtSl%2Fd7HmbBizmEAGm2REajZHrFL1BAPLQqCIa6P%2FkNm8DHzv5mwkSUNcFIFCEnp2P%2FUI9Phu8s1212kEnRFuKlE7Dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb08e8cb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| go.tffkroute.com/click?pid=6&offer_id=617&ref_id=f9918a7464de4f47ddeec3301b6N0l30_447fc4d7_4fc4400d&sub1=447fc4d7&sub8= | 172.67.195.138 | 302 Found | 66 kB |
URL User Request GET HTTP/2go.tffkroute.com/click?pid=6&offer_id=617&ref_id=f9918a7464de4f47ddeec3301b6N0l30_447fc4d7_4fc4400d&sub1=447fc4d7&sub8= IP172.67.195.138:443
CertificateIssuerGoogle Trust Services LLC Subjecttffkroute.com FingerprintFB:F1:E5:FD:54:87:E4:5A:8C:EC:A6:42:98:35:F8:9F:11:E7:66:7E ValidityThu, 18 May 2023 01:32:54 GMT - Wed, 16 Aug 2023 01:32:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=6&offer_id=617&ref_id=f9918a7464de4f47ddeec3301b6N0l30_447fc4d7_4fc4400d&sub1=447fc4d7&sub8= HTTP/1.1
Host: go.tffkroute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 10 Jun 2023 13:56:48 GMT
content-length: 0
location: https://go.bluelinknow.com/t/clk?id=rxHwLpLtYnu0M6hq&s1=6484812014a17e00013caddc&s2=447fc4d7&s8=
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6484812014a17e00013caddc; expires=Sun, 09 Jun 2024 13:56:48 GMT; secure; SameSite=None
afoffers={"617":1686405408}; expires=Sun, 09 Jun 2024 13:56:48 GMT; secure; SameSite=None
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gGa0kTyl4KjFGqSHrEKL38H%2FDasrhWSDeF1re1Azl8%2F2yXpHwq%2F2CR0qt0MScmKW1KGYpHRG5TTJwO6jRjNe3fJ6Gh1%2FxuLp51Z2nQdqIe22Cy1dEPYdzp6Wtu%2Bh95ARBV1k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521ea8fcad1c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= |  188.114.97.1 | 200 OK | 66 kB |
URL User Request GET HTTP/2get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectget-booksnow.com FingerprintD3:F2:00:5F:1A:56:F7:60:DA:74:17:49:41:5B:22:78:76:23:1D:9C ValidityMon, 22 May 2023 08:55:00 GMT - Sun, 20 Aug 2023 08:54:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= HTTP/1.1
Host: get-booksnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:48 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
set-cookie: product=0e3982bd1559d08e8610f056adf761fde2bcc64dca58a4af5e6a8c0c5056df52a%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22product%22%3Bi%3A1%3Ba%3A1%3A%7Bs%3A9%3A%22productId%22%3Bi%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
visitInfo::6591=7492731b50e67e6d71360de38b54f5eb4be982cb00e6e59e72b9bb7c7c472fb2a%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A6591%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22ba21bd9e6b361b35f8442e72f1801ae5%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22447fc4d7%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22822561d9-37d4-41aa-941b-13e99597a30a%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fl7iDIo3pu3VQ1yZz1jofzJGKFf5XCwfTFnU1oCQ0pRoM87dCFAuCukVvi6zROoFfTGzR5rMJy4UStZdmicI2EAadjy2I9Zj3CytkpnY4Kndj01Vq1u%2BRQm7NhVuD5vREWzI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521ead4b0d1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| get-booksnow.com/lead/prefill | 188.114.97.1 | 200 OK | 64 B |
URL POST HTTP/3get-booksnow.com/lead/prefill IP188.114.97.1:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerGoogle Trust Services LLC Subjectget-booksnow.com FingerprintD3:F2:00:5F:1A:56:F7:60:DA:74:17:49:41:5B:22:78:76:23:1D:9C ValidityMon, 22 May 2023 08:55:00 GMT - Sun, 20 Aug 2023 08:54:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash0a00dc476383c35bcfbc0ea44c3a60ea 36ebdfa0bfa4aa0ec8f4d7417d2112bae7d406db 819bd596583bc3bc638b2fa8d87d80b16551a1d68abb86261795db848cc226d2
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
POST /lead/prefill HTTP/1.1
Host: get-booksnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg4OVFJWDRAFVFRTAQEHUFc=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiYzU5NzdmODY0ZTFmYzFjNCIsInRyIjoiYzgxNWVmNWMxMDljYzAwODZjZmI4NWU3ZThiYjIwMDAiLCJ0aSI6MTY4NjQwNTQwOTM5OX19
traceparent: 00-c815ef5c109cc0086cfb85e7e8bb2000-c5977f864e1fc1c4-01
tracestate: 2895455@nr=0-1-2895455-535907537-c5977f864e1fc1c4----1686405409399
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
sentry-trace: 3fee59589b7247698040670d23a12bbc-9e99f1db2923e1d0-0
Content-Length: 65
Origin: https://get-booksnow.com
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream=
Cookie: product=0e3982bd1559d08e8610f056adf761fde2bcc64dca58a4af5e6a8c0c5056df52a%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22product%22%3Bi%3A1%3Ba%3A1%3A%7Bs%3A9%3A%22productId%22%3Bi%3A1%3B%7D%7D; visitInfo::6591=7492731b50e67e6d71360de38b54f5eb4be982cb00e6e59e72b9bb7c7c472fb2a%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A6591%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22ba21bd9e6b361b35f8442e72f1801ae5%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22447fc4d7%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%22822561d9-37d4-41aa-941b-13e99597a30a%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ugm1WO3MGsL8b5V5ulOgqWehII4LEqNGhFBcazvAJ%2FvskbzC8j6vOUxFRUmTGCoJ7YudXo0sIakqwa%2FBnSUWwWZB0pgJ%2Fo5QVmwgvvClNZBSEtHaO88CF5oUpzBxNnlBYx0E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521eb48d2db4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/js/scripts.js | 104.26.8.128 | 200 OK | 213 B |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/js/scripts.js IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash1685abab05914f7a17388aedbd2f2d8c b3a0a82c0ad6b940dd4f04c2536afafaf606c8c9 bd93716b19b202c539de7574e070cc724df3a945536b1b4a8c8654b85a2f56a6
GET /prod/landings/assets/layout28/layout28/js/scripts.js HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=279
etag: W/"6482f0f4-117"
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T2g2zH24fkqqQs820O9zizyFVenmJ580MUbAwgXWGwlbJcVnZZo%2F9OB73H7%2FzVT9q2BNSinIX1K8OSp78npbOubMdsqSQQyqYbXreSms4%2Fln%2BZx1N6rgtD2eJG8zAwR%2FUoV4xF0BAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb09e9db521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| jdsyw33.com/g?visitorid=f9918a7464de4f47ddeec3301b6N0l30&refid=447fc4d7&bannerid=4fc4400d&extra_data1=&extra_data2= | 104.21.85.210 | 302 Found | 66 kB |
URL User Request GET HTTP/2jdsyw33.com/g?visitorid=f9918a7464de4f47ddeec3301b6N0l30&refid=447fc4d7&bannerid=4fc4400d&extra_data1=&extra_data2= IP104.21.85.210:443
CertificateIssuerGoogle Trust Services LLC Subjectjdsyw33.com Fingerprint66:1E:2B:56:3C:94:7D:35:A7:BA:EB:4B:78:32:DC:38:FC:0E:BC:39 ValidityMon, 24 Apr 2023 00:02:41 GMT - Sun, 23 Jul 2023 00:02:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /g?visitorid=f9918a7464de4f47ddeec3301b6N0l30&refid=447fc4d7&bannerid=4fc4400d&extra_data1=&extra_data2= HTTP/1.1
Host: jdsyw33.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 10 Jun 2023 13:56:48 GMT
content-type: text/html; charset=utf-8
location: https://go.tffkroute.com/click?pid=6&offer_id=617&ref_id=f9918a7464de4f47ddeec3301b6N0l30_447fc4d7_4fc4400d&sub1=447fc4d7&sub8=
cache-control: no-cache
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 09a5b76c-6503-4e6a-aa2b-f08e52ceacf9
x-runtime: 0.006190
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RJk%2F8jQ1q9DzA1nm5B0utsASHOQlN0hEFDN9DYvxHXmyaLsdp32BrEmfjyjM0X%2FcjWuor23U5sOzAJorXWz%2FkmZ2CGY1h6Boq8EawlGCjaiTNioNY4aiCUmq26MgiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521ea7b85bb518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| secureanalytic.com/scripts/push/script/02eyoyxdkz?url=get-booksnow.com | 172.64.129.12 | 200 OK | 7.4 kB |
URL GET HTTP/2secureanalytic.com/scripts/push/script/02eyoyxdkz?url=get-booksnow.com IP172.64.129.12:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com Fingerprint78:6B:AF:02:E6:AC:5E:05:5E:BE:23:A3:64:95:13:99:68:93:2C:6A ValidityThu, 08 Jun 2023 08:18:07 GMT - Wed, 06 Sep 2023 08:18:06 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (7566), with no line terminators Hashe2583caaa4d5e0e58ccc3b9da81db98d a0bdaa250011f51c8ac3594e8d58fb2a050976ec a208c4edbec94593486c5dbe69fa9639ea25dba946d8d3421b9b664a8e0f79e1
GET /scripts/push/script/02eyoyxdkz?url=get-booksnow.com HTTP/1.1
Host: secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:50 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: DENY
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: HIT
age: 4108
last-modified: Sat, 10 Jun 2023 12:48:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7t6aw7HLZpg1cGHmkfktKh2Bd3p6Q46xDQJGSZOEGs7EwbYZMkX%2FbU22rZOg8vy869XfSPDkpMICmWX5mE4bLILntK3tqKCbpqnnzBzMHPoPKNY1hh6zKyrxnICtj%2FjDg0YCajs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d521eb48eb2742f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/common/common/dist/bundle.js | 104.26.8.128 | 200 OK | 48 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/common/common/dist/bundle.js IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (47555), with no line terminators Hash98a573651d8ed656278bde024edae5ed 7ab07f7e47391a544ba4e272e2f867f8fd23bdae 281dcbb9b8bacb9502b78fa3dc69b7e1282757b645d495a5ebc09ccf8e2611d0
GET /prod/landings/assets/common/common/dist/bundle.js HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cf-bgj: minify
etag: W/"6482f0f8-b9c3"
last-modified: Fri, 09 Jun 2023 09:29:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1457
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=khvt3GV135kt6gQlblJXI3RE5ng4VyEz0S01NO3VSws21n2dHpfQJswVb5HLgSvu7Fi5LFkg%2BVgu%2BZjMw%2B4rB0nkSThVBXtILUDcQ7MZVYTQedntGpRr3NNZAEvEEvHXcAO%2FYkFtRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb09e97b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/layout/layout.css | 104.26.8.128 | 200 OK | 17 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/layout/layout.css IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (17127), with no line terminators Hash6932a277e3f07190fc62f6ac753ff531 b873571caca4fab4446fb33cd8ecde960e2d8d4e 4fc50938e4bef1d68564cc70be5cbdcf83999fe2b6a53a7e7d10c1f287702212
GET /prod/landings/assets/layout28/layout28/styles/layout/layout.css HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: text/css
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=22385
etag: W/"6482f0f4-5771"
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i2lvm5mpp2Ip3vv8Jy0FM46XA3Ci3XFkVeTf85mGkQ7iY8GgO7vrT2E7gfL7ScETqo7usaiEjqnyjQZerIhGKn%2Bi8GckTD6rW5e4CSXas7I4wkCB9uecNEqjqZJe%2B9IexNMZQrbI5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb09e9ab521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/brands/unlimited-soft.css | 104.26.8.128 | 200 OK | 10 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/layout28/layout28/styles/brands/unlimited-soft.css IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (10341), with no line terminators Hash14f4c0a782ff9168b6227eae3dc84a7c 99e95a13d6e88454aad7220e40624d4e03a76d4b 1eaee480993414a7e5efd302d2ba98922b0d8e7372c8484dcfa7b25094290fe9
GET /prod/landings/assets/layout28/layout28/styles/brands/unlimited-soft.css HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: text/css
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=12876
etag: W/"6482f0f4-324c"
last-modified: Fri, 09 Jun 2023 09:29:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JIgNkM3CRp86JVgK%2FElsURseRo42nUEnvFNrmS%2F%2FuHZbkrBYuoQhZLidaVOlgtIz1%2FEuKlnnGGxqwsJkCI1dBkFzjCnzH1LmYxNCfm%2FWO8BOg1PSrbOmThPPoA1VzckdV89ldAfKMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e5db521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.content-loads.com/prod/landings/assets/common/common/dist/vendors.js | 104.26.8.128 | 200 OK | 520 kB |
URL GET HTTP/2cdn.content-loads.com/prod/landings/assets/common/common/dist/vendors.js IP104.26.8.128:443
Requested byhttps://get-booksnow.com/nb_no/unlock-content-now?subid=822561d9-37d4-41aa-941b-13e99597a30a&networkid=200347&publisher=447fc4d7&isNewTr=1&stream= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint46:D1:50:92:C0:52:B8:1F:56:0C:99:FD:C1:D2:52:6C:44:AC:E4:5D ValidityFri, 27 Jan 2023 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
Size520 kB (519854 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/landings/assets/common/common/dist/vendors.js HTTP/1.1
Host: cdn.content-loads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-booksnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 10 Jun 2023 13:56:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=519858
etag: W/"6482f0f8-7eeb2"
last-modified: Fri, 09 Jun 2023 09:29:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6445
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QnNio6qgjxzZhvzWvX%2BsmwfaiEETjZRkNcMVKLZo8uDz%2FaSnoXXexZkA2rGtzWAlMmpD99BKXb%2Bo4VSlG0YziKc8Dqz21A9iqIru6Kc0DWWwjwfX6eMqdBdHmGaRrgEXG7%2B%2F5sH0kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d521eb06e4cb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|