Report - gcmv.com/

Report Overview

Submitted URL
gcmv.com/
IP
185.53.177.71
ASN
#61969 Team Internet AG
Submitted
2022-12-10 08:47:32
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
no-go.kelkoogroup.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.4 kB	33 kB	95.211.116.27
s.kelkoogroup.net	316265	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	920 B	1.1 kB	185.60.164.26
tr.snapchat.com	978	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	1.8 kB	35.190.43.134
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	518 B	694 B	142.250.74.132
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	5.0 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	9.1 kB	142.250.74.131
www.friskforlag.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	151 kB	162.159.152.23
api.omappapi.com	5038	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	846 B	1.7 kB	54.230.111.48
gcmv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.8 kB	185.53.177.71
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	19 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
s.kk-resources.com	38577	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	3.3 kB	143.204.55.57
a.omappapi.com	5418	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.0 kB	198 kB	194.242.11.186
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	565 B	757 B	142.250.74.98
d38psrni17bvxu.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	290 B	1.6 kB	54.230.245.22
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.213.75
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	43 kB	142.250.74.14
status.thawte.com	5123	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	3.3 kB	93.184.220.29
sc-static.net	1183	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	12 kB	54.230.82.240
z.omappapi.com	12532	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	509 B	1.9 kB	178.128.135.232
cdn.cookie-script.com	41338	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	331 B	78.47.189.205
chimpstatic.com	4832	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	1.4 kB	96.6.17.210
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	86 kB	142.250.74.40
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	515 B	16 kB	142.250.74.35
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	611 B	713 B	108.177.14.154
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	517 B	694 B	142.250.74.67
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ciar-kep.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.0 kB	3.212.50.125
r.redirekted.com	645251	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	12 kB	66.165.243.160

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-10	medium	d38psrni17bvxu.cloudfront.net/scripts/js3.js	Malware
2022-12-10	medium	ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-10	medium	ciar-kep.com	Sinkholed
2022-12-10	medium	ciar-kep.com	Sinkholed
2022-12-10	medium	ciar-kep.com	Sinkholed

JavaScript (129)

	URL	Size	First Seen	Last Seen
	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-05
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-05 19:10:17 Times Seen1641 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB	1.6 kB	2023-03-09	2023-03-09
Pretty URL no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB IP 95.211.116.27 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 94ae9e4d8f1fcdbb56d2200f9e8fe833 bcb3654924b8b9b64de52512ca5cb1d4347e5ea6 793192138fc8273e6b4a80c9ed8628baf0b9b33c69a1cf62cb7c624be0e9e592 Loading...

	www.friskforlag.no/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9&sb-version=1654667740	6.5 kB	2023-03-07	2024-05-06
Pretty URL www.friskforlag.no/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9&sb-version=1654667740 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-06 14:33:05 Times Seen15549 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.friskforlag.no/wp-content/plugins/pixel-manager-pro-for-woocommerce/js/public/wpm-public__premium_only.p1.min.js?ver=1.27.7&sb-version=1669623638	116 kB	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/wp-content/plugins/pixel-manager-pro-for-woocommerce/js/public/wpm-public__premium_only.p1.min.js?ver=1.27.7&sb-version=1669623638 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 23e9292368d517288e53398e0348c103 e2eeb6a78289cd7dd7dda3d038882e79b9fa3781 34c00d88d1bee8b4bea980dd08843ae8b41d329572cc6bbd34ad2a43741c53e0 Loading...

	www.friskforlag.no/wp-content/plugins/perfmatters/vendor/instant-page/instantpage.js?ver=2.0.0&sb-version=1667199145	2.9 kB	2023-03-08	2024-01-13
Pretty URL www.friskforlag.no/wp-content/plugins/perfmatters/vendor/instant-page/instantpage.js?ver=2.0.0&sb-version=1667199145 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:33:52 Last Seen2024-01-13 18:59:42 Times Seen32 Hash 4c827c4b4719d9a965ca64ca4d0df87c 9694d94311fe31b4f6704d83878112f5e1536d8c 24f519cef76ac2260d02b39248ee6004faab1874c3dd2b92376df4e653abfdcb Loading...

	www.friskforlag.no/wp-content/themes/bootcommerce-child-main/js/friskus.js?ver=6.1.1&sb-version=1664370883	2.0 kB	2023-03-09	2023-03-12
Pretty URL www.friskforlag.no/wp-content/themes/bootcommerce-child-main/js/friskus.js?ver=6.1.1&sb-version=1664370883 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-12 11:55:27 Times Seen1 Hash 970b2e2e11a0b7d9f1589df450e2aec0 9af5a36c99950ce67b82dd59d86b0ed61907de77 3355bfd82d1e57ec4a39177f503be091a8bcf34323d1148052203915be177b91 Loading...

	sc-static.net/scevent.min.js	27 kB	2023-03-09	2023-03-09
Pretty URL sc-static.net/scevent.min.js IP 54.230.82.240 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:27:31 Last Seen2023-03-09 06:29:20 Times Seen1 Hash 5573f6d300072466f5ff63dcf0a513fe baf4c02cf684e7357fefb6c10e9ad40eb78e217e aa105393669d8af0e4de33748ac1eac12dd602d514d87075244545cc5a6b6d6a Loading...

	a.omappapi.com/app/js/9.8520b11d.min.js	1.7 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/9.8520b11d.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 2135046202609cadc8f42969e91bd21d 7820e46ae4a731d50a28ea683d592686fcad97a3 9625862ee4fbfc5dd16dce599111dd10fae37be370ace1d7c6aa2e7e8305dd72 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	451 B	2023-03-09	2023-12-12
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-12-12 00:15:37 Times Seen3 Hash 380feec2144a42331bdcc017a6422ba2 9d015786443adee9a29d131db4d1ce7c8b01d634 7ceb92b00bf3e4d0788fdf4951c5c463f6005ed4f27775fc9af0d1bcd8fdb1ed Loading...

	s.kk-resources.com/leadtag.js	6.9 kB	2023-03-07	2023-03-17
Pretty URL s.kk-resources.com/leadtag.js IP 143.204.55.57 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2023-03-17 12:43:10 Times Seen1 Hash a061caddf9a72996f38089e304bcd23e 8ff3f9a24060381804f08f536577c042461e1ad3 c2fc5dec89e84862f73de94802749b7b94af9ee4af0b6c3d653b965318188e44 Loading...

	www.friskforlag.no/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2&sb-version=1668666790	11 kB	2023-03-08	2024-04-19
Pretty URL www.friskforlag.no/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-19 20:39:51 Times Seen984 Hash 7ebf6938b04702b4cdb878d2cf42aa39 fbe731b5d008b425472a9fe1ca913e8d012108a7 5a95ac55c7f0f440eb1984d8da5d548f23ae0cbbb1babf81d985d810346c9dbf Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	96 B	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-07 14:17:29 Times Seen10736 Hash eb3a538fd2a39c22198e72c3b9f498a7 c966ebdbd2701a0980a85671126664f3892d4f1e ac233233e7bcaf806041b243578fab081dced8a045d9a82756410da9ea2382a1 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0&sb-version=1668667165	2.1 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-07 10:37:19 Times Seen22503 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	www.friskforlag.no/wp-content/plugins/pixelyoursite-super-pack/dist/scripts/public.js?ver=3.0.7&sb-version=1661750810	53 B	2023-03-07	2023-12-18
Pretty URL www.friskforlag.no/wp-content/plugins/pixelyoursite-super-pack/dist/scripts/public.js?ver=3.0.7&sb-version=1661750810 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:11 Last Seen2023-12-18 20:05:51 Times Seen50 Hash 0bdf043015877b3e66c4d002d5d2f130 841775ece67afd9e691dae6ee3a7fdc0009873a5 9a5266f79d76d6f6e6ee1c773844e1171811f95a3c0f89e622b6c2c36fe8ec92 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	685 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 8b70be0a8fc91bcfcf55972e34c5330c 7ab718e4f4ca2d7e5399fffe11e23aac77d30509 3d4ddce4dbb0e568b3c0dfa15ef150b3e58c89c25fea3fca0db71a74c2c1071c Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	152 B	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-07 14:17:29 Times Seen20117 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6-wc.7.1.0&sb-version=1668667165	21 kB	2023-03-07	2024-05-06
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-06 19:19:52 Times Seen3351 Hash f3d7b1578081c9cf982cfbc29f514836 fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	300 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 57e026df335bf901cf17b0959253e1f7 3a367535f68f45252930694402fcc384971069ea 13ff66bd6ad9f0a74327c76156d9d82c18c6d9d20a0d304904c3f483aadbad85 Loading...

	a.omappapi.com/app/js/31.33bee250.min.js	1.5 kB	2023-03-09	2023-03-11
Pretty URL a.omappapi.com/app/js/31.33bee250.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-11 12:40:44 Times Seen1 Hash e3dd538b33cbcc3294cbbfed1ea9a3cd 0b08046ace4494245d1cc98aa551c92942d9e47a 9f3ec175f8531bd7423f6acc0c1c55d9d6d001d1b3240007c827962be10563a9 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	563 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:57 Times Seen1 Hash aedf1f5767fdf05c84b55aa464799a3a 34ebf131332f336ab0910d02766ea155d78b16bb 0501a94fec62e64aea779e1201b0093bdcfaa42f8eb39678d2f7e6eb0a943997 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	214 B	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:32 Last Seen2024-05-07 07:46:23 Times Seen1004 Hash f82bb6a69a4493d7b599f566b44dab8c c0605d565ca54c714acd5917c3dbd03c13bcea7d acfb1edfb9b23791a1a109ee24592571c5009a4f341d28d96c86055752e97214 Loading...

	www.googletagmanager.com/gtag/js?id=AW-833441087&l=dataLayer&cx=c	138 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=AW-833441087&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 617db334ba83f196a444f2296622662a de8dd7e4176ac5b2b8cd32793ca593235cc82492 e8c9e48e37fe93426d549094779879493a588663a8f5aa95d38ca5dc042b4405 Loading...

	http:blank	702 B	2023-03-09	2023-03-09
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 05fd901f7ea8d402e2ae8c1023a54691 15f3311ce4cb25d5fd84bd8a8234382360647af0 5314ba83a9669cda2fd18b8fb9b10a6dad33d5835a1927623afa77211819354a Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	7.2 kB	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 58252827b786661c552d968cf3055751 91706a1a61ecb9216c703a089d646009092b53fe 3d522b940bc940d60738f4d4b929c12976fc6789b7c87c399bb1a34fb4fe1d2b Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	89 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 700dc58d02ff2948d6af988587cd65d4 80f8fd6e4872948ab9b22787d497a246e6a0ac18 863ee5355efc67cd8ff03032d81cd3a504fc67f55be7938be80e5443323681a6 Loading...

	www.friskforlag.no/wp-content/plugins/perfmatters/js/lazyload.min.js?ver=2.0.0&sb-version=1667199145	8.9 kB	2023-03-07	2024-05-05
Pretty URL www.friskforlag.no/wp-content/plugins/perfmatters/js/lazyload.min.js?ver=2.0.0&sb-version=1667199145 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:39 Last Seen2024-05-05 17:05:28 Times Seen506 Hash 3696666f360c55253f66459343a7bf89 424935ae7dad2a580afc32dd24c1b5bf06299a8d b0ee873dabe85e8efde99a7f6eaeadb38a873a812a7f2757117497e4da233f8f Loading...

	www.friskforlag.no/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5&sb-version=1654667740	4.9 kB	2023-03-07	2024-05-06
Pretty URL www.friskforlag.no/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5&sb-version=1654667740 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-06 19:48:24 Times Seen24440 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.7.1.0&sb-version=1668667165	2.7 kB	2023-03-07	2024-05-04
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-04 04:28:10 Times Seen2162 Hash 6656000d5e9d405df3093dec766256c2 adc0fc077f359ca912305c4d0ec2d56c201c0613 7592aea3e7ee0eb873abaf4872be28881cf3c6427244c884a20c7860d64586da Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	548 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash cfef239ef5249e16daee76ef08a5ebba 49853e9c23441e64ca89b9f7e5a4595009429e97 1500d665e3a8c65196f9653613be76fc08398218ec66905d1d42a9aaaacb8b50 Loading...

	a.omappapi.com/app/js/webfont/1.5.18/webfont.js	17 kB	2023-03-07	2024-05-06
Pretty URL a.omappapi.com/app/js/webfont/1.5.18/webfont.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-05-06 07:26:26 Times Seen10926 Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 Loading...

	a.omappapi.com/app/js/13.31198538.min.js	2.3 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/13.31198538.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 22:20:06 Times Seen1 Hash f89db2a2fd4b155989002fce87b36cdf 4f7da7079923d8e85afc5de5be4b11baa030201f c3861fd3ef70e39953663756f1d2da0fc7468988ae1d2e36ec7335c6087240ea Loading...

	gcmv.com/	343 B	2023-03-09	2023-03-09
Pretty URL gcmv.com/ IP 185.53.177.71 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash f3c8632ec9498fa8fb0c18c0b882f857 03909c7c8cdb395c82540a5228cbef39c12417de 347a9412ee7d26092eda2593ca816539d3f6c8f00d26265618a25109a405eb78 Loading...

	www.friskforlag.no/wp-includes/js/underscore.min.js?ver=1.13.4&sb-version=1668666790	19 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/underscore.min.js?ver=1.13.4&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-07 14:17:30 Times Seen42008 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	www.friskforlag.no/wp-content/themes/bootcommerce-child-main/js/simple-lightbox.mini.js	46 kB	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/wp-content/themes/bootcommerce-child-main/js/simple-lightbox.mini.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2024-05-07 07:46:25 Times Seen27 Hash f720ac7f9e1f348e3f2dc6e5f533ab93 76daa9f24bd9b35fe43a806942959539209fefe6 d83fc288040a441402b00fec086cb828212eafb0ec1df36e1860f8d82a6aafa6 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-K64SWW	239 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-K64SWW IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash b7f1a111dc5618c3b85871c2995ae1bc c98fd6857feea95615a6907bb5626ddb366a4383 983be077c7160642895004bf6e20af41ca2ea86fdac27db700f9ae06a857f7a5 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	268 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash f70d62ca8ce5d59223e1f34acf15fee7 d360ad04df7ed7a323aae025228e814b0e4ca9aa 35bdcbf99bcfc6d64b23430ca1d16669a42067d2337c2d9d44d8764e4f460e98 Loading...

	www.friskforlag.no/wp-content/plugins/woo-vipps/js/vipps.js?ver=1669623517&sb-version=1669623517	6.4 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/wp-content/plugins/woo-vipps/js/vipps.js?ver=1669623517&sb-version=1669623517 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 13:27:42 Times Seen1 Hash 87698b9d11ca711d8a676fa6f69958ba f651294a2d70c347bd3cd8116a9b665f6e6c4e54 79ce199ea465baa124d14c48628c82b176a5f5df90c34cfb342880226a80b451 Loading...

	www.friskforlag.no/wp-includes/js/wp-util.min.js?ver=6.1.1&sb-version=1668666790	1.4 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/wp-util.min.js?ver=6.1.1&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-07 14:17:30 Times Seen24745 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	a.omappapi.com/app/js/28.7c2ba7ea.min.js	6.0 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/28.7c2ba7ea.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 469f2dea9b3685e8bd1d5d6d201ca4e5 921e7228040dd83e9f9a53ba3bf36f1d0827c3a5 dd1b42deed1d63005cac2bac40391754f0a092f70dd062e85a628f02ee918a64 Loading...

	a.omappapi.com/app/js/moment-timezone/0.5.34/moment-timezone-with-data-2012-2022.min.js	42 kB	2023-03-07	2023-09-17
Pretty URL a.omappapi.com/app/js/moment-timezone/0.5.34/moment-timezone-with-data-2012-2022.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2023-09-17 15:37:08 Times Seen52 Hash 5c3d21324208bc391e661eca7f6347fb 7095f046500fdc8d7c7eba51f3b7ded664929f26 7ed17775731ec99f940c02d17c8944d31c3e2f6d2884369af025e47285468720 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	315 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 3a63a07e286d5087d9102a2fdca5df40 acb4a4e70849cbf32496a93b765cafee5e898843 bfc834c21f4278b97e4416a792e7768f5a72b0ad52da5f5c9664d2a72db54894 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	739 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 5f8a1f6ec3d725c41ce2aa8f29325594 dd159e190538b270f70fc0484391b4f7987cd18a 64b18db106ead5685a195e1470c5fec9a66bcfb6b984e4498580f791de90bf8d Loading...

	www.friskforlag.no/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.11.0&sb-version=1668666962	2.1 kB	2023-03-08	2024-01-24
Pretty URL www.friskforlag.no/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.11.0&sb-version=1668666962 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:18:04 Last Seen2024-01-24 16:00:38 Times Seen68 Hash ef8fba1a3bf0ce56b078356813703f8e 6a850e428c1c36f23763512e91b5e25d6c1866fd 45bd57a08f2ab75688b262993ca9687a1997df152860a1c146b863751719a6e6 Loading...

	tr.snapchat.com/config/no/661a052e-3636-4b22-903e-a7571e814db6.js	151 B	2023-03-09	2023-03-14
Pretty URL tr.snapchat.com/config/no/661a052e-3636-4b22-903e-a7571e814db6.js IP 35.190.43.134 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 3dc653dbaad8fc9ed259de438b426c7b 40a1dbc3c47b674ba57dc8cee2512fdf35f1c578 ed7fda6e7a5ae1dc26bea6b1a8c99377ca27f04bce9dff41be015564a71d79be Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	339 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:57 Times Seen1 Hash 6c15dd41d9bc38877930e03c4e936ed6 dceead508ca04768ab239c05e763fbe33fbacefe 2822b52a564bc826d78453c1a29e71c8a804097b3582d606d0831b4b125cf062 Loading...

	www.friskforlag.no/wp-includes/js/comment-reply.min.js?ver=6.1.1&sb-version=1654667740	3.0 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/comment-reply.min.js?ver=6.1.1&sb-version=1654667740 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-07 12:56:22 Times Seen29742 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	369 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 5616da5d052c7f51d5dd87ec4d21719c 5c3977fe84494ef376deab8c4e83232b735a6ae1 5bb8c1a7531a9bf1bbb3870187637972f5a4254b8e993ca3c597e763e070b5e3 Loading...

	www.friskforlag.no/wp-content/plugins/bs-grid-main/js/bs-grid.js?ver=6.1.1&sb-version=1657525880	543 B	2023-03-09	2023-03-11
Pretty URL www.friskforlag.no/wp-content/plugins/bs-grid-main/js/bs-grid.js?ver=6.1.1&sb-version=1657525880 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-11 12:40:44 Times Seen1 Hash 439e84309ac3da1b9e5d3ad5b6b42975 601ebdf3235263616594f1a4dadc11cbbdfc8168 cf4c00b00b3f9e975c80d0be4d534abc1d6f4c1b870fcb23ec5d062dceae5790 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	254 B	2023-03-09	2023-12-12
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-12-12 00:15:37 Times Seen2 Hash 0ef140a0bfcb7253e273d287b1ea1779 00a8a6822491416edb99a4b82118631925ead422 1ed2248eb434b520a1b2bfdf0cc4636292171ecbb0605a5d11044aced604f137 Loading...

	a.omappapi.com/app/js/api.min.js	82 kB	2023-03-08	2023-11-03
Pretty URL a.omappapi.com/app/js/api.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:27:30 Last Seen2023-11-03 22:15:30 Times Seen3 Hash 0313c788ed5d091660b1f200ef09d9c4 c03866abb355eca6d8713ec4985d0564187c20b1 96dec63fd944241d18ec974da0808f68fffd2624424237c1a24b5fe36b6374e2 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	701 B	2023-03-07	2024-03-18
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:05:14 Last Seen2024-03-18 05:59:38 Times Seen60 Hash 465d12a7c4d9bc5cbf689a9906cde6e9 330a903799b3a7a072ac38a7e9212c5988700970 5a5906c19342877651921699f644c8b9a11edb673d70475a83bf4c806327c8aa Loading...

	cdn.cookie-script.com/s/d0d874b1ff05d1671a76806430133491.js	157 kB	2023-03-09	2023-03-14
Pretty URL cdn.cookie-script.com/s/d0d874b1ff05d1671a76806430133491.js IP 78.47.189.205 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash b7b58d73688d67f1560519e1873af124 329c8638cf4c080ffafc276e4aa1a111f6f5987d 3240aaeb0acff96fd46b4ac20f1a7f926fec8c530b862ca3be5e2666dd1414d7 Loading...

	ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d	848 B	2023-03-09	2023-03-09
Pretty URL ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d IP 3.212.50.125 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 1d59565a1de62af4803915c8c9b60b32 51892a70b6333029b9bfd39a0744050b3d6501d2 82adab144ef3b2ed34a010245f0c956b3ac5d50494938594c1078e362a06db5b Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0&sb-version=1668667165	23 kB	2023-03-07	2024-05-04
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:54:00 Last Seen2024-05-04 18:13:49 Times Seen504 Hash d9bd0341b7618e3532f267c339734996 e0db8b64ba9ea41f51d814d4b21227d4ffc491fd 14626e6a31e0abd24d5c6c12e5d2643263a6a4943a6d2e80f8cfaa1a122e3428 Loading...

	www.friskforlag.no/wp-content/plugins/ajax-search-for-woocommerce-premium/assets/js/search.min.js?ver=1.21.1&sb-version=1669623540	60 kB	2023-03-08	2024-01-08
Pretty URL www.friskforlag.no/wp-content/plugins/ajax-search-for-woocommerce-premium/assets/js/search.min.js?ver=1.21.1&sb-version=1669623540 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:34 Last Seen2024-01-08 08:37:09 Times Seen39 Hash 30fa0b43aa3bbb9341e36ac80c76cbc8 a06b4658ff9cb06fa33c84458c702a9ff3d8020a d99ee35f72b2c18161d89e67bada1fd9bc48f69627ea00e34c511ea77bdca2ec Loading...

	a.omappapi.com/app/js/5.cadaa863.min.js	9.5 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/5.cadaa863.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:37:17 Times Seen1 Hash 4017efb268dbc129b41902e366e827e6 4863b3c256576664f78a5f155810f0abee471917 fe91fc163743589009316454f46db67d0fe1287cc99d767b8c891e661cc0af21 Loading...

	www.friskforlag.no/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-enhanced.js?ver=1.16.2&sb-version=1669623585	30 kB	2023-03-09	2023-12-01
Pretty URL www.friskforlag.no/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-enhanced.js?ver=1.16.2&sb-version=1669623585 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-12-01 21:37:25 Times Seen66 Hash 878a86f17d7e5a1d8ae8b9091c82a46a da3287d667b784ce8cc52597755f54e0eaa14b3f 41d31cbb36687a1c6b418374aac8ddf400a049907a7d8220eb131ac6964777d9 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.7.1.0&sb-version=1668667165	31 kB	2023-03-08	2024-05-04
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:58 Last Seen2024-05-04 04:28:10 Times Seen1590 Hash 84288ec85bead1b3c1a18b9d54e0ca6e 08ce867f7fbbd27e940e198098bd3b156a991b18 27474a8616c5a99f14b5b0bd919207c1d49a780b903bc2c5276de0316a5976bb Loading...

	www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/frontend.min.js?ver=3.12.1&sb-version=1668667247	3.3 kB	2023-03-07	2023-08-08
Pretty URL www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/frontend.min.js?ver=3.12.1&sb-version=1668667247 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:01:47 Last Seen2023-08-08 21:09:49 Times Seen3 Hash 78cfc9bebe974ef12779282f9d02c50c 5bf13f067d227b25676d6b13477bedb9f43cc987 44a0b57072f7ca5ecf86c0c24102d2299b99276139bd5ca4b3253fb7fce7c13a Loading...

	a.omappapi.com/app/js/29.1c75394c.min.js	2.8 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/29.1c75394c.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 47a4b5211e2c66ecb9ae55aad9674d59 75c0109e97d4840ab801a3de8d8ef08c2aed6384 64291ca8205f7a6497699499c83bcf2fed41389e6c63a62bd1cfaa6cf96b7784 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	5.9 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 77fc71f689c04bae6620bf00bc3dc95f cad43f06f5e7809b8e312633fd2ee69c3974a06d 92d5bb5d2ee214e4fcfdec81699c5fc06eb1a35425e8db087da10827b8652223 Loading...

	a.omappapi.com/app/js/0.81ef4a11.min.js	6.8 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/0.81ef4a11.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash bd640a339a9a349fe01b49f13b2699a0 f2d343faa28d474425c6b2b3c06496c5f26d4213 839c21ae42126ca8a9e48f655942cbbbc211ff94ca75f7e0ae79a1cf22f68d3e Loading...

	www.friskforlag.no/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2&sb-version=1668666790	21 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-07 00:51:22 Times Seen9840 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	a.omappapi.com/app/js/1.12278d6a.min.js	11 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/1.12278d6a.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 590c552a9ca45379a23c6081b5cb4898 5483b56e0d91e4cb0087fa59a2a4621caebaa469 bbdafb884904e356dd106e4201b9c1f00682c98771152a4a0affb3e011e38c73 Loading...

	ciar-kep.com/zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false	147 B	2023-03-09	2023-03-09
Pretty URL ciar-kep.com/zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false IP 3.212.50.125 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 6103c68591e14a76f869f1083268b614 1db0c4b03c2fedc67cd4af530a8985c26aff3697 ac6bd84c17d77baca1babd72626c3c5e3aff8dd3192c26d4918a841a3e9b877d Loading...

	no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB	17 kB	2023-03-09	2023-03-09
Pretty URL no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB IP 95.211.116.27 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash b3578e4a1c94bf40be31b2b5f807d7e0 22281382f264ca9473d8d1c6a13082be462acff2 ce305eb26c6ea7e785644979da8b6ba5156b005cb39d3b0ecbcc31af6b68d629 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	293 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 15cba66ac9a1535978f330eddb2be7ac 3a333a4b5486b79400b6d411f2fa738a84e4d312 2ff311d99bc4164177f8937318fc46b245f87d0d1c2fa81d272d228d8da3173a Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	717 B	2023-03-09	2023-03-12
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-12 11:55:27 Times Seen1 Hash 9b4df6d6a0169dd69cf57e404d7ceb45 9ddbd28fab7b1d048724da38bcf9454e52e5359f 7e1ec4bc1c5ad408b8698289efbcc62de0decc6000f3ac22f9643b31e77bcd8d Loading...

	www.friskforlag.no/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01&sb-version=1667199068	6.9 kB	2023-03-07	2024-05-05
Pretty URL www.friskforlag.no/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01&sb-version=1667199068 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:43 Last Seen2024-05-05 20:15:57 Times Seen459 Hash 4962698b494fa6c5b9a259b936853426 df655b977be8a3c9c563c837ae80693f21670f9d e23064f0de65944686ada90242a58d8c0de5ed90225c573b883640d315104c04 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	1.5 kB	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:39 Last Seen2023-03-09 01:12:39 Times Seen1 Hash 271559bd99b16cb09257f48cc746ee73 876412ae75b3e05c512d0a9b53967254db2fdbfb 9e216d27d78039403fad13f14db91a0eb3b8a880180d1cbc8419cdb4285b154b Loading...

	www.friskforlag.no/wp-includes/js/jquery/jquery.min.js?ver=3.6.1&sb-version=1668666790	90 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/jquery/jquery.min.js?ver=3.6.1&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-07 12:13:53 Times Seen31973 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	906 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 4547382f4725e6b3cfb12fccbccf175a f7c4076cf365153f36a8ac33d2fef9f552c7ba81 91a5285670eeedd377513fa66b1ef8e25672e51897a9a649baaf1a8bc472acd4 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	247 B	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2024-05-07 07:46:23 Times Seen14 Hash ee6842b45561f6d6b3d3ef118c353ae0 1b1f9096d3d3becd2afbaf9ff33a4dbd0cba1f66 1ddb41db5e5c33513130ebecfa0aff0e5b752b2ef8cc2684fa44e6b8b94f2bb2 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	706 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash ab5cbde7442a9a7de1e25fc13a1ad226 0c4e8c2c76c7b1b941d7ea53697d4a864518caaf f49d34f51f197884a35b3006a3ef830252d96cc0f15769597759183bf006019c Loading...

	www.friskforlag.no/wp-content/plugins/yith-woocommerce-advanced-reviews-premium/assets/js/ywar-script.min.js?ver=1.21.1&sb-version=1668667235	9.4 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/wp-content/plugins/yith-woocommerce-advanced-reviews-premium/assets/js/ywar-script.min.js?ver=1.21.1&sb-version=1668667235 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 696052e1ac9b7c9f649e6c033b591a39 76c9fa67612f7b6458fac0c23885b11bcd6bf62a d58a7b56ba921e7aa1a81d6a25a040b13351ed3979be41b709c8119ec1a1b0d7 Loading...

	www.friskforlag.no/wp-content/themes/bootscore-main/js/theme.js?ver=202205121211&sb-version=1652357484	2.2 kB	2023-03-09	2023-03-12
Pretty URL www.friskforlag.no/wp-content/themes/bootscore-main/js/theme.js?ver=202205121211&sb-version=1652357484 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-12 11:55:27 Times Seen1 Hash f50db993c279d80164746ae52d5566a7 4ffd102c989dfb51347b4513ea1d8eb9e408687a 49ae780813e1dcfc102baa4fd246d5a21c45cc1da7b3a25f0c6677b38a0ae8b0 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=7.1.0&sb-version=1668667165	1.3 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:40 Last Seen2024-05-07 10:37:18 Times Seen890 Hash ed130c8d00ba37d0e75e013974d88f75 366c717c004578ec0ac0d4390021d07114a26125 2b48be97458e30f257fc46fb5e93548f35dd52fc4c91ba441da504ba89a5c45e Loading...

	a.omappapi.com/app/js/20.1ca31d61.min.js	3.8 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/20.1ca31d61.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash abcbbabac1427b4a3e347da47d4d9651 fe533c8632a18385421f5a20cf988807eab5b9b5 e385c747398d24128c240a4f4e0607be529c26296a4802450c8188dfa3baae87 Loading...

	gcmv.com/	2.4 kB	2023-03-09	2023-03-09
Pretty URL gcmv.com/ IP 185.53.177.71 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 6fef1ff6592b9d51e6e1fd09b7a5e288 c2219c531e08d58599da4da4cdc7937c3ff3fe54 b8ce4455bddb03257d304860aa1566d16fb8090b0b551202abc6b1a1cf21b2bb Loading...

	r.redirekted.com/js/adren.min.js?n=2641516170	7.5 kB	2023-03-08	2023-03-14
Pretty URL r.redirekted.com/js/adren.min.js?n=2641516170 IP 66.165.243.160 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:11:25 Last Seen2023-03-14 08:42:01 Times Seen1 Hash 9a9ec61d7e275f25fe83f0aa93bd2e41 8a3a23c432b601e9f8f8fe2b61f0fedbc341c9ac 55afe8ae4db5b6ca9ec5a3aca1f3a7b482ca51d0914acd250093f1a9ecbfccec Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	240 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 21348dbc499e2992da02d4288fb499d9 878c4ff80a4d6e353b56f24a7bcb25513b788458 54febbeec241302152e4f82d3ffef9f281902340018d8d8a924e320b7f584195 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	569 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 4e13f4bc7121d833d40dbfaac78ec244 591e23d79e9fced930c75944303761a0b5f89cea f60827f30afb59de7371f65cb13218267872fc2ff61b930b5cbb22b00e1cd5ae Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0&sb-version=1668667165	3.0 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-05-07 10:37:18 Times Seen11424 Hash f449e3e4a7c058f7c48f57e05c788fb0 e7b0c58a1a14c14a92e452cc544b312ed91fa52e bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89 Loading...

	gcmv.com/	327 B	2023-03-09	2023-03-09
Pretty URL gcmv.com/ IP 185.53.177.71 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 562a64165b078499fc9c58b4908ae19e 074cadc5b26829942bb7f7a15ba5f4a66fd267a0 cef8286314c7aeab7c0e4660401d15d8cade44f286b2d47ef58d63d9d604dcb5 Loading...

	r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e	193 B	2023-03-09	2023-03-09
Pretty URL r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e IP 66.165.243.160 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 8de732fceeb3b2f2fbc9d28e7b7ebacd f815989800a838640f9f11352e008958a88e6c95 068a4d32e832713f24b38bf513e34205c63018d0c5df99db2e3103427354f0f8 Loading...

	www.friskforlag.no/wp-content/plugins/filter-everything-pro/assets/js/filter-everything.min.js?ver=1.6.5&sb-version=1654242643	22 kB	2023-03-07	2024-01-19
Pretty URL www.friskforlag.no/wp-content/plugins/filter-everything-pro/assets/js/filter-everything.min.js?ver=1.6.5&sb-version=1654242643 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:18 Last Seen2024-01-19 09:20:47 Times Seen40 Hash 0fcbf243c682509404a4bff0ff87b6a4 847e1ae715d4fd5f965b511aac9b8776ddd99637 f02cbd14412a90a8bfc8f21f190b903a3462f84257f1af2ade00427dd26c71b9 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	716 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 105a244e593ab23ac085b84e9df59e3d cc594632debb72cf5b05efab9b1b12829b9c9009 265ddd955f39c4b947479c18f988509825bbe4ab832c72d852305963b5472eb0 Loading...

	www.friskforlag.no/wp-content/themes/bootcommerce-child-main/woocommerce/js/woocommerce.js?ver=202205121210&sb-version=1652357407	1.3 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/wp-content/themes/bootcommerce-child-main/woocommerce/js/woocommerce.js?ver=202205121210&sb-version=1652357407 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 0e5bf30d1c6832c38b01c07cf02738c4 9a9ecb1a2f4d207ea56f4bef4eb916b666e593c5 5aa6fe51d3f6c53bb3e53a28618605ab935aa6859201c0dbfb02b28637c774c0 Loading...

	a.omappapi.com/app/js/22.7f83f3f7.min.js	1.6 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/22.7f83f3f7.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 0099f8b43b046df0a7f212afde2a397c 4ceb7b2a584e9434d371a4e978da491277114363 183eab2a4c3771163b58ae7f5197995f945817c084f800f2a001dad097d45518 Loading...

	r.redirekted.com/go?e=04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW	1.7 kB	2023-03-09	2023-03-09
Pretty URL r.redirekted.com/go?e=04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW IP 66.165.243.160 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash cd1d02e42c531b42f6a071855fe9d491 2ecb613286a47c6fec9527fc7ac1344905fa2328 31a74a41424e84e50b5a9f1cbde9457a53d9cf3801ab16972c18b881d40b21c3 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	384 B	2023-03-09	2023-12-29
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-12-29 00:27:48 Times Seen4 Hash 49c58e96aafb28e3845de01614ef0fd8 6d798021ef9d5188e5573bd016c7d34a8cb495ad 539f316db140c374a59d5d3263ebd0e2324ac508d879cf8a58483edc3162ca7b Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	430 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash cd244b3d509da23d93c4027b6cb5713c cb913e698689050245e5d8c8dd49eeaa2268f115 a1d85332d9dc00d86c8df8cc17b6d63f9a307eabf790d3bf05a5ea10ae951d08 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.7.1.0&sb-version=1668667165	9.7 kB	2023-03-08	2024-05-04
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:58 Last Seen2024-05-04 04:28:09 Times Seen1212 Hash 645d93d4f695ab50f0e0e457f87986f4 b0463a9c5fd2c1d092d9140e162780a5eab95f5c a4f9179f5a5241d96754fee37a2f1c793d0c9a1907642f8fd3f46d734c2ca5f3 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	508 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash a6405fddbf8fbde096b5ddb8e41b5799 24712bda545a3ba4a97885173c13dfa66b1b1954 fde1d9072acc2cca9a027addbd8dc5f1d0534730f4de38163656a1b1fafadad1 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	212 B	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 95f69ee73fa12fe9ee04c32613f123f2 d9e32e799a15a8e9d5c3d187947ea8d3b03932cc 49ffb16764e0255f1739177ddb183d1b269c98bfc8fc3036ddfe08fa0a2451bf Loading...

	www.friskforlag.no/wp-content/plugins/woo-j-upsellator-premium/assets/frontend/js/upsellator.min.js?ver=3.1.5&sb-version=1669623620	8.1 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/wp-content/plugins/woo-j-upsellator-premium/assets/frontend/js/upsellator.min.js?ver=3.1.5&sb-version=1669623620 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:57 Times Seen1 Hash d579aae87ceec02d199deba5348692e4 cc0a91e8ff810262ebf841bdb5c1b71b6d43cef8 c9254a38daf3b1f26dc299dc9b77007645239a6d4a8eb441bdbdd103c4de5ccb Loading...

	www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/owl/owl.carousel.min.js?ver=3.12.1&sb-version=1668667247	44 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/owl/owl.carousel.min.js?ver=3.12.1&sb-version=1668667247 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-05-07 12:18:25 Times Seen20308 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.init.min.js?ver=7.1.0&sb-version=1668667165	195 B	2023-03-07	2024-01-22
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.init.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:03:28 Last Seen2024-01-22 13:57:56 Times Seen53 Hash b81dd15a3fa82fdab475bcbc8de20bd5 bc44f08258219a7fe7a2b2818454c6080e17c0dd cf7ded474451b1b794706f53071f6fbfc7ded8f0d1c2c343c839713ac9424c47 Loading...

	no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB	9.5 kB	2023-03-09	2023-03-09
Pretty URL no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB IP 95.211.116.27 ASN #60781 LeaseWeb Netherlands B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash c1d522aa1ac358fe555d4c13f3bf59c9 fca7d99b6d452f40e453747d663593a91570d201 3ec60f4726a39bdf63ceee59c67a506282dfca3db49434e5e7b35f2ae94a8137 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	47 B	2023-03-08	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:46:27 Last Seen2023-03-14 07:47:56 Times Seen1 Hash e1fab72606fa7c53a9f98d28ecdf4a87 0f2bb6e721a3c3bb86b9e0d9b6b92fdd42ab43b7 1a99193b0d6cd08070cf511cc86ebabb6456f60cc094065c2b6c480dcba772d5 Loading...

	a.omappapi.com/app/js/11.9da7034c.min.js	2.0 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/11.9da7034c.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 2f886ecec65d47bf926b9d528c8c0ef5 66ac8c235bdefb52fa5d4898a5a7b1ed66fd1463 c283f624330331ea2fe1ad26901978ed63c23e1288375038638fd558cda10201 Loading...

	d38psrni17bvxu.cloudfront.net/scripts/js3.js	1.1 kB	2023-03-07	2023-03-17
Pretty URL d38psrni17bvxu.cloudfront.net/scripts/js3.js IP 54.230.245.22 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:45 Last Seen2023-03-17 12:40:12 Times Seen1 Hash 64b79b43df8fbf2c5d082964b9116a68 dc3c763519baf0f4c32bb60bfc429651a491ea01 c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0&sb-version=1668667165	2.9 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-07 08:25:22 Times Seen14036 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	www.friskforlag.no/wp-content/themes/bootscore-main/js/lib/bootstrap.bundle.min.js?ver=202205121211&sb-version=1652357485	78 kB	2023-03-07	2024-05-05
Pretty URL www.friskforlag.no/wp-content/themes/bootscore-main/js/lib/bootstrap.bundle.min.js?ver=202205121211&sb-version=1652357485 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:04 Last Seen2024-05-05 15:55:27 Times Seen420 Hash dfd824922bdcd8afddd7a123029bba09 093df67442d6d55091d9278701071d241a3d02ad 286fc75be1e7b08b6e8f8c70b4b6f69bf77fcd9bec929694d122b44ecbb4858d Loading...

	www.googletagmanager.com/gtag/js?id=AW-833441087	138 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=AW-833441087 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:10:54 Last Seen2023-03-09 01:12:40 Times Seen1 Hash dad260ea1837a3572ec1e012a851afb6 8ff84dad477353df4a8c72a3f8a4cbc743a2e093 9369751f7aaa3d2323c7bdcdb5eed98cef1c2cf400a43662ce2b00d64e9b7be8 Loading...

	www.friskforlag.no/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2&sb-version=1668666790	3.4 kB	2023-03-08	2024-05-07
Pretty URL www.friskforlag.no/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2&sb-version=1668666790 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-05-07 10:37:19 Times Seen10242 Hash c4a1336d5abc0f160d866481f99b1717 4498359374276a34a59ab798d667da38fd17a439 809ec973a018b6bf8ac18e74bfffc3d25182e6f44df00128d531cf3e07570ee6 Loading...

	www.friskforlag.no/cdn-cgi/challenge-platform/h/b/scripts/cb/invisible.js?cb=7774b736cdc0b500	37 kB	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/cdn-cgi/challenge-platform/h/b/scripts/cb/invisible.js?cb=7774b736cdc0b500 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 1174edf518ca06f32634af263cf9f341 13016e12a8872f20a580596c558ef14b278d11c0 0951acf381852d9aa197fa5a5a036447c10de52407cace9ef92086dbac51fc0a Loading...

	a.omappapi.com/app/js/moment.js/2.29.4/moment.min.js	58 kB	2023-03-07	2024-05-04
Pretty URL a.omappapi.com/app/js/moment.js/2.29.4/moment.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:48 Last Seen2024-05-04 23:21:11 Times Seen530 Hash c80207c947912a0a24c577d793c91088 aff601d1102ead4000873722c46865db0102e1a9 3abec75692735d0664a10337b1403620f8edf2b4cb4b9fc5216dea2e623b1f34 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	268 B	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2024-05-07 07:46:23 Times Seen13 Hash 2c18e0aa90c56329cd49d207d26c9337 5760fc775bd3a95c0caed3f8a82b3828f0eb395b 4ad0a70905c7fded0508e095d7bc49fdaee6b1a5981c92af076ac7ebab692ba7 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0&sb-version=1668667165	9.5 kB	2023-03-08	2024-05-06
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-05-06 19:19:51 Times Seen14441 Hash 4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526 Loading...

	chimpstatic.com/mcjs-connected/js/users/0a43ad848ac1e83d406be05e8/afff0d0c26b6f387f4dbd3d3b.js	50 B	2023-03-07	2024-05-07
Pretty URL chimpstatic.com/mcjs-connected/js/users/0a43ad848ac1e83d406be05e8/afff0d0c26b6f387f4dbd3d3b.js IP 96.6.17.210 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2024-05-07 10:34:53 Times Seen1674 Hash 104d46a3208b40e8ded389332f5a78a3 4ab55ccb2972e9a3cb62c65c97308c2450a682bb f6e4f5edb3194334a199f0bf80b38d92a0b7388330fbce94c8c0fb2f852c171f Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	466 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash d0a799417ae7bd358bc627ea577eec01 27e05d3c2d117535c7b5c8fa7a93e82e6487fa12 4535b3edc328991b5bc8f3a4122e235d5ef781622105d0e06cb82db10af928a9 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0&sb-version=1668667165	1.8 kB	2023-03-07	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-07 08:25:22 Times Seen21703 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	a.omappapi.com/app/js/10.0f634e82.min.js	25 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/10.0f634e82.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash e9f90b475163d5cd7a60c21d172b4241 94f3a1f17a4cef8349ed66c3fa302fb183a130b3 965fa8b470b1e97662e805a1d702a4e5c96339c9d1a8a39fd77eb252ae8cedbd Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	343 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash 3767d378c180a4fbaf2dd3747f177725 cdb6bc177a2f25b2627d4bad1784e11366f58a4c 3058aca0811d668a60d9c5d5182c7abeb4af0492c06c777cf87a30c4fe9caf8f Loading...

	www.googleoptimize.com/optimize.js?id=GTM-W4VNJVH	127 kB	2023-03-09	2023-03-09
Pretty URL www.googleoptimize.com/optimize.js?id=GTM-W4VNJVH IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 566d2dadc98d6e0a84acdf5bef75ad56 ccdd191e4ed1e99fcf2efca5c109b702175d06af 8519ea2af2dea6a69b1f65badfed8d870ab5fc01c9145742ea4135c78572220a Loading...

	www.friskforlag.no/wp-content/plugins/yith-woocommerce-advanced-reviews-premium/assets/js/ywar-attachments.min.js?ver=6.1.1&sb-version=1668667235	1.6 kB	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/wp-content/plugins/yith-woocommerce-advanced-reviews-premium/assets/js/ywar-attachments.min.js?ver=6.1.1&sb-version=1668667235 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:57 Times Seen1 Hash 8e7067c226cb77afd94d5244277b483a 304f83d2f4d5f667515fd3fb3a30a0a81f5141fb 22599ec35bc926e4242edb2ce5aa8f75de30f6f79941d07bf8898030cf7a3d7f Loading...

	a.omappapi.com/app/js/27.205350b7.min.js	1.3 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/27.205350b7.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash 3e41d09720c113712ae9461b4b2d8e4c b3326776a8b31896ee151084a9006cf06e2f8f41 71b431588ec643cf8f700db70fdcbca462f1a820f4792885bc182f4193f65201 Loading...

	a.omappapi.com/app/js/16.53ab7a19.min.js	852 B	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/16.53ab7a19.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash c74f2ba4756b39ee78caba3e79d91793 fa9c76860d38dd2b3778d9d822aba085c29646ca d6e3945e297b413614f66b9bbd9bf9367dd3ba97febfdcb0c6f7e235453a6ced Loading...

	a.omappapi.com/app/js/4.f2ffe9e7.min.js	20 kB	2023-03-08	2023-03-11
Pretty URL a.omappapi.com/app/js/4.f2ffe9e7.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:29 Last Seen2023-03-11 23:22:48 Times Seen1 Hash a5db76a7098cd882d7cc8b1ac89a04b0 e5b1f6b3b2c6f8744a2e7993344b217c3c3dd8fa b2f9480f6a1703fd69ff74ba2434d456a665195b59162a45d162373ba4ec3674 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	156 B	2023-03-09	2023-03-14
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-14 07:47:56 Times Seen1 Hash e45ed5c90dc993492c692a30b73d9fc5 8352fc2b8bc0c64caf6402db4f3704e63f966590 e94e0285f33a115d0c1679de10987fc5693001e2c64ba464b4b3d582f8c9e387 Loading...

	www.friskforlag.no/wp-content/plugins/bs-gutenberg-gallery-lightbox-main/js/baguetteBox.min.js?ver=1.0&sb-version=1652358341	9.8 kB	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/wp-content/plugins/bs-gutenberg-gallery-lightbox-main/js/baguetteBox.min.js?ver=1.0&sb-version=1652358341 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2024-05-07 07:46:23 Times Seen22 Hash 28547174e3ae721604fdfe371f5833ce a95c40068328e69ab17c76dd5f4eff0ce8411bd5 1d8ebdcca4171f9ad85a10957aecf3d043a176a5c0c88d7127a332f4ed27b60a Loading...

	www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/gift-popup.min.js?ver=3.12.1&sb-version=1668667247	13 kB	2023-03-07	2023-10-22
Pretty URL www.friskforlag.no/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/gift-popup.min.js?ver=3.12.1&sb-version=1668667247 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:01:47 Last Seen2023-10-22 06:49:15 Times Seen24 Hash 3461c9a06874b41c556915deb13ab79c 6b63c49f30b23c18609078c9da743fe1bfeac40c d3dbd62011eaa0d98fe4aec1916b937aa1aa6c615fbd09836ebcc54352faaed8 Loading...

	www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0&sb-version=1668667165	14 kB	2023-03-08	2024-05-06
Pretty URL www.friskforlag.no/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0&sb-version=1668667165 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-06 19:19:52 Times Seen635 Hash f749280669d445dfe7a49aadccff5d53 c32ad75d2cfdaf073842e1bf4f4375e0f56d8a58 bf8c713d2545b889e4ce9390e47c47a4a146649320f91ca11006bc948944ec4e Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	100 B	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2024-05-07 07:46:24 Times Seen14 Hash 8346bf0b5c3e604bf714668e087bd846 17382cafa407c648db8086026e586e5f4791d4b4 efd77569f3e2bb1c24230abff68a586daaf141c526c7a1d72f9639f937b4e3e9 Loading...

	gcmv.com/	406 B	2023-03-09	2023-03-09
Pretty URL gcmv.com/ IP 185.53.177.71 ASN #61969 Team Internet AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash 8f367ab923f9115312172c0fd095aaf4 69a4e908c8ecfc36849eda90e8f39855c7410bd6 c699196d798bd7681b5a64e8875ffb903c80ee826e6921e881cb67b668aefe34 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	8.7 kB	2023-03-09	2023-03-09
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-09 01:12:40 Times Seen1 Hash b62e493dd84183e9c21a8c8b8c379e66 dfb570bb0b222ee03ad9a001778d303ff872cd25 1a51ed346eb57de9aaa28ae92357b9083cf355de2d3e36532b558798a08680a4 Loading...

	www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai	893 B	2023-03-09	2024-05-07
Pretty URL www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai IP 162.159.152.23 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2024-05-07 07:46:23 Times Seen109 Hash e23a5c0c6c4119aae118dc18cb1e5a2d 443bc37c68e56c9cb7047c30997c618edaf7ca51 3de36306b1c9d39874b96fe010be0eb07564e056cf5e63dd7545985e01519ae7 Loading...

	www.friskforlag.no/wp-content/plugins/woo-j-upsellator-premium/assets/frontend/js/single-page-ajax.min.js?ver=3.1.5&sb-version=1669623620	1.2 kB	2023-03-09	2023-03-12
Pretty URL www.friskforlag.no/wp-content/plugins/woo-j-upsellator-premium/assets/frontend/js/single-page-ajax.min.js?ver=3.1.5&sb-version=1669623620 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:12:40 Last Seen2023-03-12 11:55:27 Times Seen1 Hash fa0a791606d9216433dc33139c57f426 ef1117fffee9737919b7dc2ff4c32fbf3c43e952 b12e78c4c4152d526c70c957b7d60bee197827e546ab88ac3a16a5d715e2d7f1 Loading...

HTTP Transactions (101)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15944
Expires: Sat, 10 Dec 2022 13:13:05 GMT
Date: Sat, 10 Dec 2022 08:47:21 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2353
Expires: Sat, 10 Dec 2022 09:26:34 GMT
Date: Sat, 10 Dec 2022 08:47:21 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9663
Expires: Sat, 10 Dec 2022 11:28:24 GMT
Date: Sat, 10 Dec 2022 08:47:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 10 Dec 2022 08:33:20 GMT
content-type: application/json
age: 841
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: EsYAA8Kpj0zX18PAHsDggPKRFd5oKs1QHjr0Nt3IRpEHjF4lN96VS8cSslpcSDT0mFfcDgQOP2k=
x-amz-request-id: RXN9T5YN539NAN6B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 10 Dec 2022 07:50:35 GMT
age: 3406
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 08:47:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

gcmv.com/

185.53.177.71

200 OK

2.4 kB

URL HTTP/1.1
gcmv.com/
IP
185.53.177.71:0
ASN
#61969 Team Internet AG

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2170)
Size
2.4 kB (2431 bytes)
Hash
0b9e18647dd7673b1acb5e3ad6b70ce4
622ea950b69980d8b393a1f6b1b82f03b23a6959
7aec5b6d6b68a2388ef768a31b02c45229953222070d632f64723144b24ea961

HTTP Headers

GET / HTTP/1.1
Host: gcmv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Dec 2022 08:47:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip

d38psrni17bvxu.cloudfront.net/scripts/js3.js

54.230.245.22

200 OK

1.1 kB

URL HTTP/1.1
d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP
54.230.245.22:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (506)
Size
1.1 kB (1134 bytes)
Hash
64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gcmv.com/

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Sat, 10 Dec 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HD5XS83OEU8TYN6J7piG2_1NPgy0OPrRV2vE7lPCq5yp_yF8qppAug==
Age: 13968

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 08:07:55 GMT
age: 2367
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2094
Cache-Control: max-age=89667
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:22 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:41:49 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.148.213.75

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.213.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +iN6YnKSipBwHNE92I/g+Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0NXn4sWwGAlYJNpgUy5/UbzK3gY=

gcmv.com/track.php?domain=gcmv.com&toggle=browserjs&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D

185.53.177.71

200 OK

20 B

URL HTTP/1.1
gcmv.com/track.php?domain=gcmv.com&toggle=browserjs&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D
IP
185.53.177.71:0
ASN
#61969 Team Internet AG

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=gcmv.com&toggle=browserjs&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D HTTP/1.1
Host: gcmv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gcmv.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Dec 2022 08:47:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

gcmv.com/ls.php

185.53.177.71

201 Created

0 B

URL HTTP/1.1
gcmv.com/ls.php
IP
185.53.177.71:0
ASN
#61969 Team Internet AG

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ls.php HTTP/1.1
Host: gcmv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2122
Origin: http://gcmv.com
Connection: keep-alive
Referer: http://gcmv.com/

HTTP/1.1 201 Created
Server: nginx
Date: Sat, 10 Dec 2022 08:47:22 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 6394479a9262991fc4062082
Charset: utf-8
Access-Control-Allow-Origin: http://gcmv.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_ELuFlHuQg+6ybi0fo5aFuEiOIglHzrSr1yUqFOmI7enx5yhoLi9LacQG3EGiBRlfwVjyZOQYQodRNM0bH4Hrtw==

gcmv.com/favicon.ico

185.53.177.71

200 OK

0 B

URL HTTP/1.1
gcmv.com/favicon.ico
IP
185.53.177.71:0
ASN
#61969 Team Internet AG

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: gcmv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gcmv.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

gcmv.com/track.php?click=7d905f613654ea9b70e255b7bdd643a73d525fe6&domain=gcmv.com&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzk0NDc5OWI4MjBifHx8MTY3MDY2MjA0Mi4wNjE2fDYzZWU4ZmJlNTE4NzBkMDc1NDMyNmQ3ZGRiYTI3MzQyNzVmODE0YzZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiNGRjYTg3NWFlYzBkYTM2MjYwNDRlODNjOWE3ZTBiMDAxZWY1NzY3fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off

185.53.177.71

200 OK

20 B

URL HTTP/1.1
gcmv.com/track.php?click=7d905f613654ea9b70e255b7bdd643a73d525fe6&domain=gcmv.com&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzk0NDc5OWI4MjBifHx8MTY3MDY2MjA0Mi4wNjE2fDYzZWU4ZmJlNTE4NzBkMDc1NDMyNmQ3ZGRiYTI3MzQyNzVmODE0YzZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiNGRjYTg3NWFlYzBkYTM2MjYwNDRlODNjOWE3ZTBiMDAxZWY1NzY3fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP
185.53.177.71:0
ASN
#61969 Team Internet AG

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?click=7d905f613654ea9b70e255b7bdd643a73d525fe6&domain=gcmv.com&uid=MTY3MDY2MjA0MS43NTQyOjA0ZjI2YmZlMmJjNTExODMxNjA1MTQ2ZTY4NjgyYTE3MmRlYWUwMzVkODVlZGJkOWE4YjU2NTc0MWMwYWNhYjg6NjM5NDQ3OTliODIyOQ%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzk0NDc5OWI4MjBifHx8MTY3MDY2MjA0Mi4wNjE2fDYzZWU4ZmJlNTE4NzBkMDc1NDMyNmQ3ZGRiYTI3MzQyNzVmODE0YzZ8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXxiNGRjYTg3NWFlYzBkYTM2MjYwNDRlODNjOWE3ZTBiMDAxZWY1NzY3fDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: gcmv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gcmv.com/

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d

3.212.50.125

200

1.1 kB

URL HTTP/1.1
ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d
IP
3.212.50.125:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1096 bytes)
Hash
a670c085c22d709fadabaa874fdceb12
7de217ab339a353fadfea71e430a2af2ec38927e
46d52e4c2a6ad4e229e2e7bb7e8d688889cd4021edd3dc5a40aac10b92cea738

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gcmv.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: bogYIeqz

ciar-kep.com/zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

3.212.50.125

200

424 B

URL HTTP/1.1
ciar-kep.com/zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
3.212.50.125:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
424 B (424 bytes)
Hash
da65d3cdf24cfb12f8a5156f35dcd2fd
dcd2681e6296c5d32e00bad852f9012ccb327602
05a3df923415ddd774aebd19d2197314b44376f8375ac96f4b6b7834b9b3e2f0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/zcvisitor/42fc0292-7867-11ed-b3fd-12d7aaa3c45d/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4307e974-7867-11ed-b3fd-12d7aaa3c45d
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: DbUgsKCL

ciar-kep.com/favicon.ico

3.212.50.125

404

653 B

URL HTTP/1.1
ciar-kep.com/favicon.ico
IP
3.212.50.125:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size
653 B (653 bytes)
Hash
ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/zcredirect?visitid=42fc0292-7867-11ed-b3fd-12d7aaa3c45d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

HTTP/1.1 404 
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: bskIKUgB

r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e

66.165.243.160

200 OK

794 B

URL HTTP/1.1
r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e
IP
66.165.243.160:0
ASN
#29802 HVC-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Size
794 B (794 bytes)
Hash
dc1dcd6de17acd0fab6bad73333998d5
e362d49b6c07c9d43d0ce7ce8e49a45bf37c516a
7afd808618eeb17d1cfbdcac99aa76ee6f00f7aad314664508578ca7c156a36b

HTTP Headers

GET /redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 10 Dec 2022 08:47:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.0.14

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sat, 10 Dec 2022 11:31:29 GMT
Date: Sat, 10 Dec 2022 08:47:24 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sat, 10 Dec 2022 11:31:29 GMT
Date: Sat, 10 Dec 2022 08:47:24 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sat, 10 Dec 2022 11:31:29 GMT
Date: Sat, 10 Dec 2022 08:47:24 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sat, 10 Dec 2022 11:31:29 GMT
Date: Sat, 10 Dec 2022 08:47:24 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sat, 10 Dec 2022 11:31:29 GMT
Date: Sat, 10 Dec 2022 08:47:24 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6818 bytes)
Hash
7abc253f87be063c8bccb9dcf8c1ccfa
088c938e8807779f1f9d3113d89a152d8c9389c3
a07c81bff4bda55ae45f3cbdbdd1f91d761582a7eb3c75d4d82a6c6ff56b7a37

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6818
x-amzn-requestid: f4de5113-c58a-4dc5-a3a5-fb3cf023b679
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw46AEQsoAMFu8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903b73-12594da83576d6b74640ea1a;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:06:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: u0zRqQte0Zzxlq3nDnNbNmfV0S5w-JKfeKj3NNnT_vaXyuN0v9cKVw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 08:13:27 GMT
age: 2037
etag: "088c938e8807779f1f9d3113d89a152d8c9389c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9948 bytes)
Hash
a0cb823bf2991a7047962ee388f00dc0
4a0377cd21b6ab69f7e45392a547c9846e607464
86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9948
x-amzn-requestid: 0b1400a6-7791-468f-a1d5-b46836e7b164
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMEGNZoAMF7ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-124f9a6f03db01a67784657f;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oTKfu5W6CwOWjb8xOm9ZTu_X_w4JXU7uz4BstlwXZ9k8strPr9H4vg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:22 GMT
age: 39242
etag: "4a0377cd21b6ab69f7e45392a547c9846e607464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12743 bytes)
Hash
0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: YTqJN92gTy04q3obEXe4P1gmG2h9b2IQjjSkkUXyqnfFOL67uobN4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:58:18 GMT
age: 38946
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12047 bytes)
Hash
d3acf5a494a6bb8b26858974ede70a33
4bccc3032f7427d881a49250e576c05dd7d5614f
786db0da1198986aeba9aa420a7c89b5b27a09bc48c3806769342159f116705d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12047
x-amzn-requestid: 87cb3342-c784-4ea1-a96e-d1e581a86bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czqP1Fd0IAMFdww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63915731-178eb2960448312e146f5bd4;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 03:17:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BjbkkmxxwK9xut7yloGC9fRwhMLQRtfcU1JWiyqAUfMNk-WPQab1Cg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:10 GMT
age: 38654
etag: "4bccc3032f7427d881a49250e576c05dd7d5614f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7811 bytes)
Hash
052b61a3bd1c839e1f5ce37834cad817
1fbbf8fb328a1406904d6346004e2c89c6ba2419
96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7811
x-amzn-requestid: dc97f86e-a29c-4139-887a-e775a0327280
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4EH_oAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-3a38086160ac180b3f8cf5d8;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TM_0Q_GmJDuXth6JpRvm_JAZXwT-xFZEjzuMeIzfzBu1J5jQ_Tng9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:15:38 GMT
etag: "1fbbf8fb328a1406904d6346004e2c89c6ba2419"
content-type: image/jpeg
age: 37906
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 05:47:56 GMT
age: 10768
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r.redirekted.com/css/adren.css?n=2641516170

66.165.243.160

200 OK

243 B

URL HTTP/1.1
r.redirekted.com/css/adren.css?n=2641516170
IP
66.165.243.160:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
243 B (243 bytes)
Hash
f72acd3fece9f7cf58643616c745b2ea
92bc529a83c5466fbf6b9e702eef1e59644687a1
e2d9fd8b995f146baf54bc35d162d3e8169a5345368058b10a3b3bf4592ed777

HTTP Headers

GET /css/adren.css?n=2641516170 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e

HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 10 Dec 2022 08:47:24 GMT
Content-Type: text/css
Content-Length: 243
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-f3"
Accept-Ranges: bytes

r.redirekted.com/js/adren.min.js?n=2641516170

66.165.243.160

200 OK

7.5 kB

URL HTTP/1.1
r.redirekted.com/js/adren.min.js?n=2641516170
IP
66.165.243.160:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (7528), with no line terminators
Size
7.5 kB (7528 bytes)
Hash
9a9ec61d7e275f25fe83f0aa93bd2e41
8a3a23c432b601e9f8f8fe2b61f0fedbc341c9ac
55afe8ae4db5b6ca9ec5a3aca1f3a7b482ca51d0914acd250093f1a9ecbfccec

HTTP Headers

GET /js/adren.min.js?n=2641516170 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e

HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 10 Dec 2022 08:47:24 GMT
Content-Type: application/javascript
Content-Length: 7528
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-1d68"
Accept-Ranges: bytes

r.redirekted.com/favicon.ico

66.165.243.160

200 OK

0 B

URL HTTP/1.1
r.redirekted.com/favicon.ico
IP
66.165.243.160:0
ASN
#29802 HVC-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e

HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 10 Dec 2022 08:47:24 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-0"
Accept-Ranges: bytes

r.redirekted.com/go?e=04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW

66.165.243.160

200 OK

1.7 kB

URL HTTP/1.1
r.redirekted.com/go?e=04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW
IP
66.165.243.160:0
ASN
#29802 HVC-AS

File type
HTML document, ASCII text, with very long lines (459)
Size
1.7 kB (1744 bytes)
Hash
1ed8b0a2013335969e5e3bdb147d718f
7e45c3f1cda15b46821d888bda25d433bab973b1
7ff553b17cbc5369c0869a05a5ee1ac3d94bc3d4fe4ecc50d6aa2464e8296ff3

HTTP Headers

GET /go?e=04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=f457e9b3aa2bde47d62ada2f6ad9f095&request_id=4a446d1e8c217c60ed103df0aeb8db3e
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx/1.21.5
Date: Sat, 10 Dec 2022 08:47:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.0.14
Set-Cookie: uuid=8203267089578637312; expires=Sun, 11-Dec-2022 08:47:24 GMT; Max-Age=86400

www.google-analytics.com/analytics.js

142.250.74.14

200 OK

20 kB

URL HTTP/1.1
www.google-analytics.com/analytics.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Sat, 10 Dec 2022 08:13:43 GMT
Expires: Sat, 10 Dec 2022 10:13:43 GMT
Cache-Control: public, max-age=7200
Age: 2021
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript

www.google-analytics.com/collect?v=1&_v=j98&a=1379799045&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3D04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=2125813694.1670662043&tid=UA-32454353-1&_gid=895170391.1670662043&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1788655988

142.250.74.14

200 OK

35 B

URL HTTP/1.1
www.google-analytics.com/collect?v=1&_v=j98&a=1379799045&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3D04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=2125813694.1670662043&tid=UA-32454353-1&_gid=895170391.1670662043&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1788655988
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j98&a=1379799045&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3D04mWWSFWwxGsmWFLeZKq94aq8cRsyHmB9gGp9flp0uRsuAvC8MKq9blB5jwX70KC59Gr8RPXd8IsyHGC-uPrYcPX0cxX-ZFC9AKA803B5ymX2EaFefmX5flp94QsmkQL59Gr-RPX58IA3OKM7cRn7VQX1c0rbHHC0VUM7ZGLsqHr-ZTn8gwXskKWzxHs7DaL8W3X7VmFtMHAbxRE55QMYImq4uJsmOaCmtvVtEwLwbHVbVFL9AaWxk3Bk1QsYkQLe4mW8bPXvVzX-xaBetvVVgPX9yQsugFC85wWVy3C9gQA_DQn8IPrwkapefxXvyUDuHPCY5UWe8IVcZvF1tvW&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=2125813694.1670662043&tid=UA-32454353-1&_gid=895170391.1670662043&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1788655988 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Fri, 09 Dec 2022 13:33:31 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
Age: 69233

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6e810ea7668c1e6f86a5f2dddbd6d3ee
c45ed366e4dd9b313044baee29db0d747125a24f
c8bd3e832ac2c1c8bad035289f4698602b9ad1c69adb5e455b00e459a3d4c08a

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5965
Cache-Control: max-age=123768
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:24 GMT
Etag: "639370c7-1d7"
Expires: Sun, 11 Dec 2022 19:10:12 GMT
Last-Modified: Fri, 09 Dec 2022 17:30:47 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB

95.211.116.27

200 OK

30 kB

URL HTTP/1.1
no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Size
30 kB (29995 bytes)
Hash
d75c4e84dbe9d44aa672ea28922e61f9
b1d1a7de31d8c3a6596bb076658eac4029cab068
61593e8ce7c9214d203e43ddfedbd8d57d1a5f0351d04b181279d04c92308eea

HTTP Headers

GET /ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.redirekted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 08:47:24 GMT
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391
clickId: 107698148_1670662044671_2782960
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.015637S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/html; charset=UTF-8
Content-Length: 29995
Set-Cookie: datadome=fnUvVCxzxolEWuZYarNDqKA_HnL5Dgm~jcXknW8lIIYO4dBzvL5JgRFYA-Ab0cDJwZAFa8Gg_pfil00IkP-OwtCzL5ECEpulKg3zOnz3m5Mbe_gpwz3HN14rVPtqY3Q; Max-Age=31536000; Expires=Sun, 10 Dec 2023 08:47:24 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6294-184fb37bbff-eabe0; Max-Age=31536000; Expires=Sun, 10 Dec 2023 08:47:24 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=97
Connection: Keep-Alive

no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960

95.211.116.27

200 OK

68 B

URL HTTP/1.1
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedc72d34123a3320c0a30d8df012716a6730459db6d995e58c24eb701f6e24792d684af8ea49c12887b29f7b8a134a8f652025cb66ad77b67238edcf122d8eaca4d8704a5ca307dd7aa4cbb6bf4c5ad15b64ec2a4e828b79c9b25aee6cc6317a69e8bb72b34ca571c5b19b27f1a9d16224193b849e9c84665eb276d3455c3ee1f6eb845d278f5998d20a427a3579489b4c0be821fc644c51b1571a2d520438669b6dd7b0b5fab1d4bfb20511ef8853916ce92509b204e39450570f09500bdf7fe8d297aa46ae13cccd9f907622287cdea3450fbb50289a5ac41714069426b608815ac19d6528f8a04a0eb4d183f320ce017ba1721037758bed73195624ae9dd8f7847060cf9d6f03b109dff3a0565bb678&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058

HTTP Headers

GET /assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=fnUvVCxzxolEWuZYarNDqKA_HnL5Dgm~jcXknW8lIIYO4dBzvL5JgRFYA-Ab0cDJwZAFa8Gg_pfil00IkP-OwtCzL5ECEpulKg3zOnz3m5Mbe_gpwz3HN14rVPtqY3Q; kelkooID=a4c6294-184fb37bbff-eabe0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 08:47:24 GMT
Request-Time: PT0.001616S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: image/png
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=80
Connection: Keep-Alive

no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960

95.211.116.27

200 OK

0 B

URL HTTP/1.1
no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /fp?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=fnUvVCxzxolEWuZYarNDqKA_HnL5Dgm~jcXknW8lIIYO4dBzvL5JgRFYA-Ab0cDJwZAFa8Gg_pfil00IkP-OwtCzL5ECEpulKg3zOnz3m5Mbe_gpwz3HN14rVPtqY3Q; kelkooID=a4c6294-184fb37bbff-eabe0; _ga=GA1.2.1808273210.1670662043; _gid=GA1.2.524240620.1670662043
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 08:47:24 GMT
Request-Time: PT0.003769S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=86
Connection: Keep-Alive

no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&initiator=timeout

95.211.116.27

303 See Other

0 B

URL HTTP/1.1
no-go.kelkoogroup.net/redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedc72d34123a3320c0a30d8df012716a6730459db6d995e58c24eb701f6e24792d684af8ea49c12887b29f7b8a134a8f652025cb66ad77b67238edcf122d8eaca4d8704a5ca307dd7aa4cbb6bf4c5ad15b64ec2a4e828b79c9b25aee6cc6317a69e8bb72b34ca571c5b19b27f1a9d16224193b849e9c84665eb276d3455c3ee1f6eb845d278f5998d20a427a3579489b4c0be821fc644c51b1571a2d520438669b6dd7b0b5fab1d4bfb20511ef8853916ce92509b204e39450570f09500bdf7fe8d297aa46ae13cccd9f907622287cdea3450fbb50289a5ac41714069426b608815ac19d6528f8a04a0eb4d183f320ce017ba1721037758bed73195624ae9dd8f7847060cf9d6f03b109dff3a0565bb678&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&initiator=timeout
IP
95.211.116.27:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedc72d34123a3320c0a30d8df012716a6730459db6d995e58c24eb701f6e24792d684af8ea49c12887b29f7b8a134a8f652025cb66ad77b67238edcf122d8eaca4d8704a5ca307dd7aa4cbb6bf4c5ad15b64ec2a4e828b79c9b25aee6cc6317a69e8bb72b34ca571c5b19b27f1a9d16224193b849e9c84665eb276d3455c3ee1f6eb845d278f5998d20a427a3579489b4c0be821fc644c51b1571a2d520438669b6dd7b0b5fab1d4bfb20511ef8853916ce92509b204e39450570f09500bdf7fe8d297aa46ae13cccd9f907622287cdea3450fbb50289a5ac41714069426b608815ac19d6528f8a04a0eb4d183f320ce017ba1721037758bed73195624ae9dd8f7847060cf9d6f03b109dff3a0565bb678&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&clickId=107698148_1670662044671_2782960&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&initiator=timeout HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670628077933&.sig=I0vBaGbEIQq2C0vIoXALhuCPu2c-&affiliationId=96965866&comId=100541924&country=no&offerId=74e63af7634f51f1c518cc4fa339ee58&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=fnUvVCxzxolEWuZYarNDqKA_HnL5Dgm~jcXknW8lIIYO4dBzvL5JgRFYA-Ab0cDJwZAFa8Gg_pfil00IkP-OwtCzL5ECEpulKg3zOnz3m5Mbe_gpwz3HN14rVPtqY3Q; kelkooID=a4c6294-184fb37bbff-eabe0; _ga=GA1.2.1808273210.1670662043; _gid=GA1.2.524240620.1670662043
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 303 See Other
Date: Sat, 10 Dec 2022 08:47:24 GMT
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391
clickId: 107698148_1670662044671_2782960
country: no
Location: https://www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.017659S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=3ZtVerQ_XkmKf~keY99F3yo1DotINAbyT6dDrf-mtOSXbDQd2lkMDA6CkmyHp4TUbmOOlqCFEOiX3vUkAnstcBkgLAeGtswo_TNxieuM0lPqTcNIQeQzQ9NDNRBiig-8; Max-Age=31536000; Expires=Sun, 10 Dec 2023 08:47:24 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=95
Connection: Keep-Alive
Content-Type: text/plain

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
72b194d2f4e7a6f46b0153d92df1c139
688caaf8e47689b2b5140d07aa7d13c7395659e9
6d876036fd92e79f27023edd7b2718d0f168395b4af2cfbe6fbc0dcfb91a1996

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:25 GMT
Etag: "63927f08-117"
Server: ECS (amb/6BA1)
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FoffersearchGo%3F.ts%3D1670628077933%26.sig%3DI0vBaGbEIQq2C0vIoXALhuCPu2c-%26affiliationId%3D96965866%26comId%3D100541924%26country%3Dno%26offerId%3D74e63af7634f51f1c518cc4fa339ee58%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100541924%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Friskforlag.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1808273210.1670662043&tid=UA-168544891-6&_gid=524240620.1670662043&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&cd3=100541924&cd4=a4c6294-184fb37bbff-eabe0&cd5=&cd6=96965866%7C100541924%7C&z=1501245783

142.250.74.14

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FoffersearchGo%3F.ts%3D1670628077933%26.sig%3DI0vBaGbEIQq2C0vIoXALhuCPu2c-%26affiliationId%3D96965866%26comId%3D100541924%26country%3Dno%26offerId%3D74e63af7634f51f1c518cc4fa339ee58%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100541924%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Friskforlag.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1808273210.1670662043&tid=UA-168544891-6&_gid=524240620.1670662043&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&cd3=100541924&cd4=a4c6294-184fb37bbff-eabe0&cd5=&cd6=96965866%7C100541924%7C&z=1501245783
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FoffersearchGo%3F.ts%3D1670628077933%26.sig%3DI0vBaGbEIQq2C0vIoXALhuCPu2c-%26affiliationId%3D96965866%26comId%3D100541924%26country%3Dno%26offerId%3D74e63af7634f51f1c518cc4fa339ee58%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7DQM9gHragFL9IHA6D2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVFF-IPrsqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100541924%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Friskforlag.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1808273210.1670662043&tid=UA-168544891-6&_gid=524240620.1670662043&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1670662044676_1078391&cd3=100541924&cd4=a4c6294-184fb37bbff-eabe0&cd5=&cd6=96965866%7C100541924%7C&z=1501245783 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Sat, 10 Dec 2022 08:47:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
72b194d2f4e7a6f46b0153d92df1c139
688caaf8e47689b2b5140d07aa7d13c7395659e9
6d876036fd92e79f27023edd7b2718d0f168395b4af2cfbe6fbc0dcfb91a1996

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:25 GMT
Etag: "63927f08-117"
Last-Modified: Sat, 10 Dec 2022 08:47:25 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

1.2 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1165 bytes)
Hash
22aefe6ce00123e4c7da67a21737a18e
c3fbe97932462edff0a1512f17a56421bc2175e1
d902e07bee1b6875015870db719935237ff3c8219bb1b8fb4da1b709ecc7b0e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.kk-resources.com/leadtag.js

143.204.55.57

200 OK

2.6 kB

URL HTTP/1.1
s.kk-resources.com/leadtag.js
IP
143.204.55.57:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (6910)
Size
2.6 kB (2595 bytes)
Hash
b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0

HTTP Headers

GET /leadtag.js HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: eec88ab9-5fe1-47d4-888a-b95fe137d49f
X-Gravitee-Request-Id: eec88ab9-5fe1-47d4-888a-b95fe137d49f
Request-Time: 7
Accept-Ranges: bytes
Last-Modified: Tue, 12 Jul 2022 13:48:05 GMT
Content-Encoding: gzip
Date: Sat, 10 Dec 2022 08:01:39 GMT
Cache-Control: public, max-age=3600
ETag: "01eb894c46b26432f1c6dc225e35b2f1bfc24a0c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vHHcOu-AK0z9FVR3yyGmRVyGMZo0LwNoK6ohfPmUStwDqHxj8cP8mQ==
Age: 2746

www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai

162.159.152.23

200 OK

102 kB

URL HTTP/2
www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai
IP
162.159.152.23:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (61953), with CRLF, LF line terminators
Size
102 kB (101776 bytes)
Hash
b9db9a37de789da950a3ff341ea475da
44bbf983e1cbebe1decc9e714b38c0e24a262a51
7a3bc54f29038fa9fbd00b28d0fa332aac28299a587364bee0f74afce003783f

HTTP Headers

GET /produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai HTTP/1.1
Host: www.friskforlag.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:25 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7774b736cdc0b500-OSL
cache-control: max-age=600, public, s-maxage=3600
expires: Sat, 10 Dec 2022 08:57:25 GMT
link: <https://www.friskforlag.no/wp-json/>; rel="https://api.w.org/", <https://www.friskforlag.no/wp-json/wp/v2/product/228439>; rel="alternate"; type="application/json"
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
cf-cache-status: BYPASS
cdn-cache-control: max-age=3600
pragma: public
x-acd-cms: wordpress
x-acd-status: BYPASS, set-cookie
x-acd-ttl: 3600
x-content-type-options: nosniff
x-servebolt-plugin: active
set-cookie: mailchimp_landing_site=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0; expires=Sat, 07-Jan-2023 08:47:25 GMT; Max-Age=2419200; path=/; secure; SameSite=Strict
__cf_bm=CMElHAptqQijBgR5sYOHQN648bLh5NAZdgqJaxd3pvc-1670662045-0-AU19xqCQjGFSMGqe33xWPrrMp+Fubon2zpiRACqfJ7tb710bPrer8DL+WA28BEk4gmBUVK+rask/oh0Y6pe50Wg=; path=/; expires=Sat, 10-Dec-22 09:17:25 GMT; domain=.www.friskforlag.no; HttpOnly; Secure; SameSite=None
servebolt: acd
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

3.7 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
3.7 kB (3696 bytes)
Hash
5aaa10eec8f66a875368d951d85e5c7a
4e13421e4503086c7b1d7d0d1baf5c8188650608
4f0b4a384259a224a65fa1070c27177d4beb9f1afc6b7af94e2e520879d7dccc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E36FE3C53F7C4207C48010121E5B9E6B57F17E0B3A4D1DA64603894737AB241"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Sat, 10 Dec 2022 12:02:14 GMT
Date: Sat, 10 Dec 2022 08:47:26 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

6.3 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
6.3 kB (6266 bytes)
Hash
ee915b44f8f6973165e2a4786b2f5fcc
13987d7bf80586abfba4176a2ad5b4a4191140a4
e9f05857cba427799e1cf172bc14f6b03a0e2283918369f42140fa18c7ca4e33

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E36FE3C53F7C4207C48010121E5B9E6B57F17E0B3A4D1DA64603894737AB241"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Sat, 10 Dec 2022 12:02:14 GMT
Date: Sat, 10 Dec 2022 08:47:26 GMT
Connection: keep-alive

chimpstatic.com/mcjs-connected/js/users/0a43ad848ac1e83d406be05e8/afff0d0c26b6f387f4dbd3d3b.js

96.6.17.210

200 OK

874 B

URL HTTP/1.1
chimpstatic.com/mcjs-connected/js/users/0a43ad848ac1e83d406be05e8/afff0d0c26b6f387f4dbd3d3b.js
IP
96.6.17.210:0
ASN
#16625 AKAMAI-AS

File type
data
Size
874 B (874 bytes)
Hash
2be8b8372f48c8023f189aeb56f2c89b
d6d4dfb1b6585bdeb69a0f0aefd9e0876c08861b
e3b6fca3ff3efdb3dc59ee04d81f47cae4b5547beb7013021e8f96c759e5c7af

HTTP Headers

GET /mcjs-connected/js/users/0a43ad848ac1e83d406be05e8/afff0d0c26b6f387f4dbd3d3b.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 8RujfYVcoiJE0hmZ4rl57V7+eR+thZXQeKTjgWUYN/d3Bvntu7I+b01R4JiByyUzh9IbHRhoUTs=
x-amz-request-id: 79C8343880B502A7
Last-Modified: Wed, 06 Mar 2019 18:47:02 GMT
ETag: "104d46a3208b40e8ded389332f5a78a3"
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 50
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 40
X-EdgeConnect-Origin-MEX-Latency: 89
Unused62: 8096267
Cache-Control: max-age=1117
Expires: Sat, 10 Dec 2022 09:06:03 GMT
Date: Sat, 10 Dec 2022 08:47:26 GMT
Connection: keep-alive

www.googletagmanager.com/gtm.js?id=GTM-K64SWW

142.250.74.40

200 OK

85 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-K64SWW
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1241), with no line terminators
Size
85 kB (84723 bytes)
Hash
acb663e8c04acf4d0a752662d769d7b9
e14ad227f0f669f4239a551bcc3368c4ad37ff0f
ad7e3feb5118562038051972967e4fc33c63ae6237ba3c90561b916278f397c5

HTTP Headers

GET /gtm.js?id=GTM-K64SWW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Dec 2022 08:47:26 GMT
expires: Sat, 10 Dec 2022 08:47:26 GMT
cache-control: private, max-age=900
last-modified: Sat, 10 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83165
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

status.thawte.com/

93.184.220.29

200 OK

2.2 kB

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
2.2 kB (2154 bytes)
Hash
095972e9adbee70044d51290cbc322ec
2b624d30f633a23ec27775220079841ac88fc6b5
0e3cbfd0966c71763227db500dab768e86d9b640754d372555cadcd511fc9859

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6289
Cache-Control: max-age=124090
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:26 GMT
Etag: "639370c7-1d7"
Expires: Sun, 11 Dec 2022 19:15:36 GMT
Last-Modified: Fri, 09 Dec 2022 17:30:47 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

www.friskforlag.no/wp-content/cache/perfmatters/www.friskforlag.no/fonts/13e458115ea1.google-fonts.css

162.159.152.23

200 OK

44 kB

URL HTTP/2
www.friskforlag.no/wp-content/cache/perfmatters/www.friskforlag.no/fonts/13e458115ea1.google-fonts.css
IP
162.159.152.23:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2244), with no line terminators
Size
44 kB (43512 bytes)
Hash
2edbc8593be47f18658df505e951d73e
43976acacdc0c6a64ec26c9eb7d198e972a2d1e4
31c0ec33a3fc6ec0c163b705c018e28b2cbe6fead5ca3d8261a0fdc4058d422e

HTTP Headers

GET /wp-content/cache/perfmatters/www.friskforlag.no/fonts/13e458115ea1.google-fonts.css HTTP/1.1
Host: www.friskforlag.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai
Cookie: mailchimp_landing_site=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0; __cf_bm=CMElHAptqQijBgR5sYOHQN648bLh5NAZdgqJaxd3pvc-1670662045-0-AU19xqCQjGFSMGqe33xWPrrMp+Fubon2zpiRACqfJ7tb710bPrer8DL+WA28BEk4gmBUVK+rask/oh0Y6pe50Wg=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:25 GMT
content-type: text/css
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=2592
etag: W/"a20-5df4dedac169b"
expires: Sun, 10 Dec 2023 08:47:25 GMT
last-modified: Wed, 18 May 2022 19:04:36 GMT
vary: Accept-Encoding
x-frontend-cache: MISS
cf-cache-status: HIT
age: 1366797
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
servebolt: acd
server: cloudflare
cf-ray: 7774b73aa96eb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.friskforlag.no/wp-content/cache/perfmatters/www.friskforlag.no/fonts/b2479bee511c.google-fonts.css

162.159.152.23

200 OK

3.2 kB

URL HTTP/2
www.friskforlag.no/wp-content/cache/perfmatters/www.friskforlag.no/fonts/b2479bee511c.google-fonts.css
IP
162.159.152.23:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (567), with no line terminators
Size
3.2 kB (3170 bytes)
Hash
89c3626bccaedc30cda213de49945bd8
22ff855bf685652e861202119c13cc15a3f25f35
4747f635f7cd88be0a7e56798ab93f04bf9fa3552bdeebe101a35c2c80b3f350

HTTP Headers

GET /wp-content/cache/perfmatters/www.friskforlag.no/fonts/b2479bee511c.google-fonts.css HTTP/1.1
Host: www.friskforlag.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/produkt/inger-in-dubai/?kk=a4c6294-184fb37bbff-eabe0&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Treningsdagbok+Med+Inger+In+Dubai
Cookie: mailchimp_landing_site=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0; __cf_bm=CMElHAptqQijBgR5sYOHQN648bLh5NAZdgqJaxd3pvc-1670662045-0-AU19xqCQjGFSMGqe33xWPrrMp+Fubon2zpiRACqfJ7tb710bPrer8DL+WA28BEk4gmBUVK+rask/oh0Y6pe50Wg=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:25 GMT
content-type: text/css
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=670
etag: W/"29e-5ded7ba127ed0"
expires: Sun, 10 Dec 2023 08:47:25 GMT
last-modified: Thu, 12 May 2022 22:03:24 GMT
vary: Accept-Encoding
x-frontend-cache: MISS
cf-cache-status: HIT
age: 1366799
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
servebolt: acd
server: cloudflare
cf-ray: 7774b73aa970b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s.kelkoogroup.net/k.gif

185.60.164.26

200 OK

0 B

URL HTTP/1.1
s.kelkoogroup.net/k.gif
IP
185.60.164.26:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: etag
Referer: https://www.friskforlag.no/
Origin: https://www.friskforlag.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: 617e141e-cf2a-45c8-be14-1ecf2a05c87b
X-Gravitee-Request-Id: 617e141e-cf2a-45c8-be14-1ecf2a05c87b
Vary: Origin
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://www.friskforlag.no
Access-Control-Allow-Headers: etag
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Sat, 10 Dec 2022 08:47:26 GMT
content-length: 0

s.kelkoogroup.net/k.gif

185.60.164.26

200 OK

43 B

URL HTTP/1.1
s.kelkoogroup.net/k.gif
IP
185.60.164.26:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b

HTTP Headers

GET /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODRmYjM3YmJmZi1lYWJlMA==
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: 90a9b739-6467-4eaf-a9b7-3964679eaf34
X-Gravitee-Request-Id: 90a9b739-6467-4eaf-a9b7-3964679eaf34
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODRmYjM3YmJmZi1lYWJlMA==
Vary: *,Origin
Pragma: no-cache
Expires: 0
Request-Time: 0
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate
Last-Modified: Fri, 01 Jan 2010 00:00:00 GMT
Access-Control-Allow-Origin: https://www.friskforlag.no
Access-Control-Expose-Headers: ETag
Access-Control-Allow-Credentials: true
Date: Sat, 10 Dec 2022 08:47:26 GMT
Content-Type: image/gif
content-length: 43

a.omappapi.com/app/js/api.min.css

194.242.11.186

200 OK

156 kB

URL HTTP/2
a.omappapi.com/app/js/api.min.css
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (17996), with no line terminators
Size
156 kB (156385 bytes)
Hash
0e9a8f3cce9c92411ef126e554bb2675
0bd27bbbe52ddd27228e3f4207dd95c127804b36
9d308ef0c5c77bcad78f84916c829055ba3f9002646eb0b23e88ec0463451546

HTTP Headers

GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6378026e-464c"
last-modified: Fri, 18 Nov 2022 22:08:46 GMT
cdn-storageserver: DE-165
cdn-requestpullsuccess: True
cdn-fileserver: 296
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 12/03/2022 14:13:30
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5c048f0b1eb2af086800f765a448f5ec
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

sc-static.net/scevent.min.js

54.230.82.240

200 OK

12 kB

URL HTTP/2
sc-static.net/scevent.min.js
IP
54.230.82.240:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (27174), with no line terminators
Size
12 kB (11844 bytes)
Hash
c2e77894268b6b774d0794484c8d2e8a
7c0f663756f2c886f84d504408a21b5e3870bdb2
69218077f554239b91d61d5008a3e2d81a8ed6f1f8319ab6ee2d96202dcdfafe

HTTP Headers

GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11844
server: CloudFront
date: Sat, 10 Dec 2022 08:47:26 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sun, 11 Dec 2022 06:28:34 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HBiNpq10ErGNxA9oMYoYlovwCf3dp4BBHWHmH880lMB1rXF-cZS4Aw==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
32f1bc047e54ac927d09e1998818e093
1ca84375422f11213e2a8c6b56191cef6b913583
8f013c209f896fdb08cc36d3381865fdf4245c3b41cdcffb0823b1890cd20c48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6477
Cache-Control: max-age=85777
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:26 GMT
Etag: "6392da62-1d7"
Expires: Sun, 11 Dec 2022 08:37:03 GMT
Last-Modified: Fri, 09 Dec 2022 06:49:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
32f1bc047e54ac927d09e1998818e093
1ca84375422f11213e2a8c6b56191cef6b913583
8f013c209f896fdb08cc36d3381865fdf4245c3b41cdcffb0823b1890cd20c48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6477
Cache-Control: max-age=85777
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:26 GMT
Etag: "6392da62-1d7"
Expires: Sun, 11 Dec 2022 08:37:03 GMT
Last-Modified: Fri, 09 Dec 2022 06:49:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
32f1bc047e54ac927d09e1998818e093
1ca84375422f11213e2a8c6b56191cef6b913583
8f013c209f896fdb08cc36d3381865fdf4245c3b41cdcffb0823b1890cd20c48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6477
Cache-Control: max-age=85777
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:26 GMT
Etag: "6392da62-1d7"
Expires: Sun, 11 Dec 2022 08:37:03 GMT
Last-Modified: Fri, 09 Dec 2022 06:49:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

tr.snapchat.com/cm/i?pid=661a052e-3636-4b22-903e-a7571e814db6&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee

35.190.43.134

200 OK

0 B

URL HTTP/2
tr.snapchat.com/cm/i?pid=661a052e-3636-4b22-903e-a7571e814db6&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm/i?pid=661a052e-3636-4b22-903e-a7571e814db6&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tr.snapchat.com/p?pid=661a052e-3636-4b22-903e-a7571e814db6&ev=PAGE_VIEW&e_ni=%2C&e_pr=%2C&e_iids=%2C&e_desc=%2C&e_cur=NOK&e_ic=%2C&intg=gtm&pl=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&bt=1d53c387&if=false&m_dcl=1651&m_fcps=1742&m_pi=1420&m_pl=1708&m_pv=v2&m_rd=1820&m_sl=1817&rf=https%3A%2F%2Fno-go.kelkoogroup.net%2F&trackId=a82acc8b-faf6-4f82-82c3-9560d8dc9106&ts=1670662045545&u_c1=3755bb1b-4ac2-40d3-85fc-8586ba6b092a&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&v=2.0.0

35.190.43.134

200 OK

68 B

URL HTTP/2
tr.snapchat.com/p?pid=661a052e-3636-4b22-903e-a7571e814db6&ev=PAGE_VIEW&e_ni=%2C&e_pr=%2C&e_iids=%2C&e_desc=%2C&e_cur=NOK&e_ic=%2C&intg=gtm&pl=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&bt=1d53c387&if=false&m_dcl=1651&m_fcps=1742&m_pi=1420&m_pl=1708&m_pv=v2&m_rd=1820&m_sl=1817&rf=https%3A%2F%2Fno-go.kelkoogroup.net%2F&trackId=a82acc8b-faf6-4f82-82c3-9560d8dc9106&ts=1670662045545&u_c1=3755bb1b-4ac2-40d3-85fc-8586ba6b092a&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&v=2.0.0
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /p?pid=661a052e-3636-4b22-903e-a7571e814db6&ev=PAGE_VIEW&e_ni=%2C&e_pr=%2C&e_iids=%2C&e_desc=%2C&e_cur=NOK&e_ic=%2C&intg=gtm&pl=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F%3Fkk%3Da4c6294-184fb37bbff-eabe0%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTreningsdagbok%2BMed%2BInger%2BIn%2BDubai&bt=1d53c387&if=false&m_dcl=1651&m_fcps=1742&m_pi=1420&m_pl=1708&m_pv=v2&m_rd=1820&m_sl=1817&rf=https%3A%2F%2Fno-go.kelkoogroup.net%2F&trackId=a82acc8b-faf6-4f82-82c3-9560d8dc9106&ts=1670662045545&u_c1=3755bb1b-4ac2-40d3-85fc-8586ba6b092a&u_sclid=244f451c-da80-4539-aafb-be0e713a55ee&u_scsid=33c6ad53-ba60-4e0a-8085-4cea4aa9168c&v=2.0.0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAA3JyQ0AIAgEwIpIQHEJ5XhtFRSvz8kQbtz9yjpJ8dyUeUdIM8Sxwd9Z9aFAU0fpA2oxKxEyAAAA;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

a.omappapi.com/app/js/moment.js/2.29.4/moment.min.js

194.242.11.186

200 OK

21 kB

URL HTTP/2
a.omappapi.com/app/js/moment.js/2.29.4/moment.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (58064), with no line terminators
Size
21 kB (20713 bytes)
Hash
6283903fdf63cc64c6e63d992f93b9b4
8e1f276a5765c106b3c5e3a2cb8fe64dcd5568a3
ded7eda3af890e7412b5f1e6eb9e0334c6993206626c6edb3be16f01f64a87ce

HTTP Headers

GET /app/js/moment.js/2.29.4/moment.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"62ed39ef-e2d0"
last-modified: Fri, 05 Aug 2022 15:40:31 GMT
cdn-storageserver: DE-167
cdn-requestpullsuccess: True
cdn-fileserver: 418
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/26/2022 15:15:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: cf0fa885f6cd5dc8ee82006cbf0b1538
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
32f1bc047e54ac927d09e1998818e093
1ca84375422f11213e2a8c6b56191cef6b913583
8f013c209f896fdb08cc36d3381865fdf4245c3b41cdcffb0823b1890cd20c48

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6477
Cache-Control: max-age=85777
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:26 GMT
Etag: "6392da62-1d7"
Expires: Sun, 11 Dec 2022 08:37:03 GMT
Last-Modified: Fri, 09 Dec 2022 06:49:06 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

a.omappapi.com/app/js/11.9da7034c.min.js

194.242.11.186

200 OK

1.5 kB

URL HTTP/2
a.omappapi.com/app/js/11.9da7034c.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (1941)
Size
1.5 kB (1460 bytes)
Hash
529e0c002ce9499116c69917eeec8147
81de193b5f0ed7187f389619c40eb27c2c44a480
b5ae4831515e5f43ccd56fffae1e057448e36d56e8c54b7819ad83897a35d1e1

HTTP Headers

GET /app/js/11.9da7034c.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"637289e5-7cb"
last-modified: Mon, 14 Nov 2022 18:33:09 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 473
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ecf9bdafacd30e89db8c824b3c2a0470
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

a.omappapi.com/app/js/28.7c2ba7ea.min.js

194.242.11.186

200 OK

2.9 kB

URL HTTP/2
a.omappapi.com/app/js/28.7c2ba7ea.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (5919)
Size
2.9 kB (2898 bytes)
Hash
8b81774291cbb29c16bab01e6b1a6d13
6fe908a4d4ee4bc278bba734a66b9c9ff7cf0303
38cb24d9530a7503b134165cc3a084ed7d366c56fea6ff9424d43fa80af71ef9

HTTP Headers

GET /app/js/28.7c2ba7ea.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-1758"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-198
cdn-requestpullsuccess: True
cdn-fileserver: 471
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4d6ce7a959166ba1c02798a1079f0360
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/29.1c75394c.min.js

194.242.11.186

200 OK

1.5 kB

URL HTTP/2
a.omappapi.com/app/js/29.1c75394c.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (2728)
Size
1.5 kB (1497 bytes)
Hash
b78dcf9874ed0ff3f70599b41ac5fa3d
2005e2620807aeba70b40703ea7b9ef2cf4f8730
66f5c7d203af61233eb384bbd0e79cb9e7e88c6d5508348482e7657ab3a7872e

HTTP Headers

GET /app/js/29.1c75394c.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-adf"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-200
cdn-requestpullsuccess: True
cdn-fileserver: 471
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 48ccdfe1540bc688b8986a36e37eee50
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.14

200 OK

21 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
data
Size
21 kB (21179 bytes)
Hash
3e0fa956f77d252b5e0d03ac9b90f2e8
fd6d27efa9fa5526d3b62bb99382236d436a4a91
94f0ed30a6481dce38406d6b878dd59dc503deb8aefadc89fd28489803eac3e7

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 10 Dec 2022 07:34:02 GMT
expires: Sat, 10 Dec 2022 09:34:02 GMT
cache-control: public, max-age=7200
age: 4405
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15476, version 1.0\012- data
Size
16 kB (15476 bytes)
Hash
083f5cafe748b8ac91823b36986d7fda
0d763699e5bce633aa6adc03370b8630b87c1b31
a3d8afcbc68d3ae65312e50ce252f5eb4cb817d3fe39452bd37a76f896ab5921

HTTP Headers

GET /s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 20:54:38 GMT
expires: Thu, 07 Dec 2023 20:54:38 GMT
cache-control: public, max-age=31536000
age: 215569
last-modified: Fri, 24 Jun 2022 18:41:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1571215981.1670662045&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F&gtm=2wgbu0K64SWW

142.250.74.98

200 OK

42 B

URL HTTP/2
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1571215981.1670662045&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F&gtm=2wgbu0K64SWW
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

POST /pagead/landing?gcs=G100&gcd=G100&rnd=1571215981.1670662045&url=https%3A%2F%2Fwww.friskforlag.no%2Fprodukt%2Finger-in-dubai%2F&gtm=2wgbu0K64SWW HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Dec 2022 08:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&gjid=1532299863&_gid=1468320079.1670662046&_u=qFBAAEAAEAAAACAAI~&z=430472977

108.177.14.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&gjid=1532299863&_gid=1468320079.1670662046&_u=qFBAAEAAEAAAACAAI~&z=430472977
IP
108.177.14.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&gjid=1532299863&_gid=1468320079.1670662046&_u=qFBAAEAAEAAAACAAI~&z=430472977 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.friskforlag.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 10 Dec 2022 08:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0cf9ee8fd84528d931cd343d295b5f43
15564c0b3e9c92e10d1a3ebf728a255e580e6959
737e3ef7c008bcacc39276d362f631365ccd3a27a7b0d843b3e3eba9c381fb4e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "737E3EF7C008BCACC39276D362F631365CCD3A27A7B0D843B3E3EBA9C381FB4E"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3783
Expires: Sat, 10 Dec 2022 09:50:30 GMT
Date: Sat, 10 Dec 2022 08:47:27 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Dec 2022 08:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71666728-1&cid=553593074.1670662046&jid=1839926297&_u=qFBAAEAAEAAAACAAI~&z=158183845 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Dec 2022 08:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

z.omappapi.com/v3/i?aid=171696&cid=wwgz4evjisosc3fzbjk3&sid=6244443d4d1c0&rt=false&dv=desktop&cty=floating&url=produkt%2Finger-in-dubai&v=5

178.128.135.232

204 No Content

1.7 kB

URL HTTP/1.1
z.omappapi.com/v3/i?aid=171696&cid=wwgz4evjisosc3fzbjk3&sid=6244443d4d1c0&rt=false&dv=desktop&cty=floating&url=produkt%2Finger-in-dubai&v=5
IP
178.128.135.232:0
ASN
#14061 DIGITALOCEAN-ASN

File type
data
Size
1.7 kB (1694 bytes)
Hash
96b9df39a0687a4c19b3de0df40605dd
9049a6c12ee1244e7712e93a7cf4363c8c83dce3
5c424876ac506a1faeab02400f03235ec8da32c2e2c902f2b4cf505bda90e123

HTTP Headers

GET /v3/i?aid=171696&cid=wwgz4evjisosc3fzbjk3&sid=6244443d4d1c0&rt=false&dv=desktop&cty=floating&url=produkt%2Finger-in-dubai&v=5 HTTP/1.1
Host: z.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sat, 10 Dec 2022 08:47:27 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://www.friskforlag.no
Access-Control-Allow-Credentials: true
Server: kong/0.14.1

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

a.omappapi.com/app/js/api.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/api.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6378026b-13ef5"
last-modified: Fri, 18 Nov 2022 22:08:43 GMT
cdn-storageserver: DE-198
cdn-requestpullsuccess: True
cdn-fileserver: 492
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/25/2022 21:21:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 860f7ee73dd0d2ee1b3e661fdb8fdfc4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/4.f2ffe9e7.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/4.f2ffe9e7.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/4.f2ffe9e7.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"637289e2-4f7e"
last-modified: Mon, 14 Nov 2022 18:33:06 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 459
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/25/2022 21:21:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: cc60a4206c3c8fef77a1c0f1f79569d5
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/10.0f634e82.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/10.0f634e82.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/10.0f634e82.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-6236"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-165
cdn-requestpullsuccess: True
cdn-fileserver: 512
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/25/2022 21:21:38
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7ba75c2cc3a45609617273562494fc39
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.cookie-script.com/s/d0d874b1ff05d1671a76806430133491.js

78.47.189.205

200 OK

0 B

URL HTTP/2
cdn.cookie-script.com/s/d0d874b1ff05d1671a76806430133491.js
IP
78.47.189.205:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/d0d874b1ff05d1671a76806430133491.js HTTP/1.1
Host: cdn.cookie-script.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 10 Dec 2022 08:47:26 GMT
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 07:28:31 GMT
etag: W/"b7b58d73688d67f1560519e1873af124"
access-control-allow-origin: *
x-cache-status: HIT
content-type: application/javascript
content-encoding: gzip
X-Firefox-Spdy: h2

a.omappapi.com/app/campaign-views/daf929ba1e80/wwgz4evjisosc3fzbjk3/3af4eec5ed635beef3f4dbb9d59a1443-yesno.json

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/campaign-views/daf929ba1e80/wwgz4evjisosc3fzbjk3/3af4eec5ed635beef3f4dbb9d59a1443-yesno.json
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/campaign-views/daf929ba1e80/wwgz4evjisosc3fzbjk3/3af4eec5ed635beef3f4dbb9d59a1443-yesno.json HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:27 GMT
content-type: application/json
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"3af4eec5ed635beef3f4dbb9d59a1443"
last-modified: Thu, 08 Dec 2022 06:43:41 GMT
perma-cache: MISS
x-amz-id-2: 3M8pI1ka7tJeyPpoIu6pkN+CBSbUxd6+pi9NswUZ1OBmPiil28+BHS8ZI3tjx0C4D9YcIILXxnk=
x-amz-request-id: ZRNWKAXHFD4HH7TS
x-amz-meta-date: 1670481820
x-amz-meta-level: vbp_pro
x-amz-meta-title: 3af4eec5ed635beef3f4dbb9d59a1443-yesno.json
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/08/2022 06:44:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6506e4c0974bfaa82bc261fa8ba1b53a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

api.omappapi.com/v2/embed/171696/wwgz4evjisosc3fzbjk3

54.230.111.48

200 OK

0 B

URL HTTP/2
api.omappapi.com/v2/embed/171696/wwgz4evjisosc3fzbjk3
IP
54.230.111.48:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/embed/171696/wwgz4evjisosc3fzbjk3 HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
date: Sat, 10 Dec 2022 08:47:25 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Sat, 10 Dec 2022 08:40:27 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 08 Dec 2022 06:43:42 GMT
etag: W/"7eef580521079ba2f300ff71c9702968"
x-optinmonster-campaign: wwgz4evjisosc3fzbjk3
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
content-encoding: gzip
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JpbQ6K-pFP2E5UxB-HtdTLqcKF_1CXklGP9j6pAOJwn3768EMk5X2A==
X-Firefox-Spdy: h2

api.omappapi.com/v2/embed/171696/hldq9w6jn7wv5jpooc7v

54.230.111.48

200 OK

0 B

URL HTTP/2
api.omappapi.com/v2/embed/171696/hldq9w6jn7wv5jpooc7v
IP
54.230.111.48:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/embed/171696/hldq9w6jn7wv5jpooc7v HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
date: Sat, 10 Dec 2022 08:47:25 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Sat, 10 Dec 2022 08:36:50 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Mon, 28 Nov 2022 10:04:42 GMT
etag: W/"892fc3d44420a6f68705fd0a6aca9dd5"
x-optinmonster-campaign: hldq9w6jn7wv5jpooc7v
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
content-encoding: gzip
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7UoR1yP_LSWtKBHVrbuh_L2OQr-Uuug2m3ksbAobtVZOdlq_xqT55g==
X-Firefox-Spdy: h2

a.omappapi.com/app/js/5.cadaa863.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/5.cadaa863.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/5.cadaa863.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6373fca9-2509"
last-modified: Tue, 15 Nov 2022 20:55:05 GMT
cdn-storageserver: DE-197
cdn-requestpullsuccess: True
cdn-fileserver: 489
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6a6d6cb4d6afd327824dac07fcb6cbe0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/31.33bee250.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/31.33bee250.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/31.33bee250.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-5f2"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-168
cdn-requestpullsuccess: True
cdn-fileserver: 506
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 19:08:14
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0dd6c15bd63a51c10eb927074b1c1c92
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

tr.snapchat.com/config/no/661a052e-3636-4b22-903e-a7571e814db6.js

35.190.43.134

200 OK

0 B

URL HTTP/2
tr.snapchat.com/config/no/661a052e-3636-4b22-903e-a7571e814db6.js
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /config/no/661a052e-3636-4b22-903e-a7571e814db6.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.friskforlag.no
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
access-control-allow-origin: https://www.friskforlag.no
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

a.omappapi.com/app/js/20.1ca31d61.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/20.1ca31d61.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/20.1ca31d61.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-eca"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-197
cdn-requestpullsuccess: True
cdn-fileserver: 505
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2038a287b56235c66bef09ad6437559a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/webfont/1.5.18/webfont.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/webfont/1.5.18/webfont.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/webfont/1.5.18/webfont.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"62ed37ae-40cb"
last-modified: Fri, 05 Aug 2022 15:30:54 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 419
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 21:15:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5944c2c7a7bb1f35d20b473e14bd53f3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/9.8520b11d.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/9.8520b11d.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/9.8520b11d.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-684"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-198
cdn-requestpullsuccess: True
cdn-fileserver: 505
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 23:02:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: be82667ca99debd6ea85d1a063cccba2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

a.omappapi.com/app/js/22.7f83f3f7.min.js

194.242.11.186

200 OK

0 B

URL HTTP/2
a.omappapi.com/app/js/22.7f83f3f7.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/js/22.7f83f3f7.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.friskforlag.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:26 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63729c0b-613"
last-modified: Mon, 14 Nov 2022 19:50:35 GMT
cdn-storageserver: DE-197
cdn-requestpullsuccess: True
cdn-fileserver: 506
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 21:15:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 304b9f88c5861410d1209a3e405ebcb2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (129)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations