| | 84.32.84.32 | 302 Moved Temporarily | 137 B |
URL User Request GET HTTP/1.1IP84.32.84.32:80 ASN#47583 Hostinger International Limited
File typeHTML document, ASCII text, with CRLF line terminators Hashdb6326425133a2f50394863e5d7eeebd cef980dbd2f220013523de0aacdb0aacce606a63 edc917a54836b853206e9dd47ab35115d05dc9ef1c515632180424b13705d059
GET / HTTP/1.1
Host: allisfreenow.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: hcdn
Date: Fri, 10 May 2024 13:49:33 GMT
Content-Type: text/html
Content-Length: 137
Connection: keep-alive
Location: https://ruffledplumage.com/?a=102241&c=134526&s1=018
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 53f8402173059b7c70905344c4a85ec9-int-edge3
x-hcdn-cache-status: DYNAMIC
|
|
| e1.o.lencr.org/ | 23.36.76.226 | | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash8292db59b45cb2e44f776eb19944e5cf 299a0b00bd3e4f1a492bbb3db1a95ea4ae133ec7 235742fb4e9582b06f1537b76a81af4c0ec19360b67735b3fa2e23e95322b792
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "235742FB4E9582B06F1537B76A81AF4C0EC19360B67735B3FA2E23E95322B792"
Last-Modified: Wed, 08 May 2024 23:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13240
Expires: Fri, 10 May 2024 17:30:14 GMT
Date: Fri, 10 May 2024 13:49:34 GMT
Connection: keep-alive
|
|
| ruffledplumage.com/?a=102241&c=134526&s1=018 | 67.207.69.191 | 302 Found | 0 B |
URL User Request GET HTTP/1.1ruffledplumage.com/?a=102241&c=134526&s1=018 IP67.207.69.191:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectruffledplumage.com FingerprintAB:E7:3D:FB:A8:93:DE:14:7D:B2:C0:EF:40:CF:F1:34:60:F8:A4:6E ValidityMon, 15 Apr 2024 23:06:47 GMT - Sun, 14 Jul 2024 23:06:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=102241&c=134526&s1=018 HTTP/1.1
Host: ruffledplumage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 13:49:34 GMT
content-length: 0
location: https://doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=018&s3=&s4=
set-cookie: sid=iw5hrSqlLoeMDfzpLd8Xa6se+tPlhUlo2/719UX27vvwtfRzH0rclA==; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
trk=auvryWnbq1hUEOCj5vNvoase+tPlhUlo2/719UX27vvwtfRzH0rclA==; Max-Age=63071999; Expires=Sun, 10 May 2026 13:49:33 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
c108171=iw5hrSqlLofpf+kSvCoOtuoUOHDXZi2csVxkzChcHiAlhvvSlPIr6Q==; Max-Age=2591999; Expires=Sun, 09 Jun 2024 13:49:33 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
pt30=62c36396b4ae4cd4b41550a48e016ebb; Max-Age=2592000; Expires=Sun, 09 Jun 2024 13:49:34 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptc=62c36396b4ae4cd4b41550a48e016ebb; Max-Age=157680000; Expires=Wed, 09 May 2029 13:49:34 GMT; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
ptbs=62c36396b4ae4cd4b41550a48e016ebb; Domain=ruffledplumage.com; Path=/; Secure; HttpOnly; SameSite=None
|
|
| doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=018&s3=&s4= | 128.199.56.44 | 302 Found | 0 B |
URL User Request GET HTTP/2doninio.com/?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=018&s3=&s4= IP128.199.56.44:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectdoninio.com FingerprintD3:45:5F:F2:0D:1F:0D:89:EC:56:7F:C5:93:08:D6:4A:45:6E:A0:45 ValidityTue, 12 Mar 2024 03:30:24 GMT - Mon, 10 Jun 2024 03:30:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?utm_campaign=FNg32Z4Ubn&s2=&aid=102241&s1=018&s3=&s4= HTTP/1.1
Host: doninio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://youcantrackthis.com/?c=111906&s1=018&s5=ZEU-01bcd5b7-e152-4304-97f6-eeefac646552&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn
referrer-policy: no-referrer
server: nginx/1.17.2
set-cookie: sess-e77b0662344488daba9af744856b7988=MTcxNTM0ODk3NHxmc2JVMVdOanRPUnVfeUlnS2dBaDVkaGVfX1U5RmQyWlZ0VlNoNzFLYm4weG1memRadDNNZGpBPXw60axINixjYBN-XkERVuteiuOPVp0EBxb7zg-JZhBVjw==; Max-Age=31536000; HttpOnly
content-length: 0
date: Fri, 10 May 2024 13:49:34 GMT
X-Firefox-Spdy: h2
|
|
| youcantrackthis.com/?c=111906&s1=018&s5=ZEU-01bcd5b7-e152-4304-97f6-eeefac646552&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn | 52.207.66.72 | 302 Found | 210 B |
URL User Request GET HTTP/1.1youcantrackthis.com/?c=111906&s1=018&s5=ZEU-01bcd5b7-e152-4304-97f6-eeefac646552&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn IP52.207.66.72:443
CertificateIssuerGlobalSign nv-sa Subject*.youcantrackthis.com FingerprintCA:62:BB:43:52:C3:DE:F8:A9:95:61:79:8A:E4:D4:43:F9:C7:F3:BE ValidityThu, 28 Dec 2023 01:37:27 GMT - Tue, 28 Jan 2025 01:37:26 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashc704644ab9ed35e6812af7b57a1d853b 43f6e7e0300198ee0c1fcb3d9ad75046cb59f21b 26608f339aa07d5b8792f096a71a2031f133edf790a835df68ff95ebeb068b42
GET /?c=111906&s1=018&s5=ZEU-01bcd5b7-e152-4304-97f6-eeefac646552&s2=&s3=&s4=&a=102241&zci=FNg32Z4Ubn HTTP/1.1
Host: youcantrackthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 210
Content-Type: text/html; charset=utf-8
Date: Fri, 10 May 2024 13:49:35 GMT
Location: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=iw5hrSqlLoe9pkUfTk5Vuase+tPlhUlo9GELsHJ9F4J/fi9Z2Ma8PQ==; domain=.youcantrackthis.com; path=/; HttpOnly
trk=auvryWnbq1iMDfzpLd8Xa6se+tPlhUlo9GELsHJ9F4J/fi9Z2Ma8PQ==; domain=.youcantrackthis.com; expires=Sun, 10-May-2026 13:49:35 GMT; path=/; HttpOnly
c106328=iw5hrSqlLof0c8waOw0iW/PDbTlgFrMvNuvOpJGj+6olhvvSlPIr6Q==; domain=.youcantrackthis.com; expires=Sun, 09-Jun-2024 13:49:35 GMT; path=/; HttpOnly
Connection: close
|
|
| www.kosoghygge.com/img/logo.png | 34.149.196.159 | 200 OK | 4.9 kB |
URL GET HTTP/2www.kosoghygge.com/img/logo.png IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typePNG image data, 300 x 110, 8-bit/color RGBA, non-interlaced Hashc1b75be98c7f9e5d3e02ad75196adace e1150e306cd385e3a282a3cc6cbbbcb7eacf8969 5b7df3cd104e71cace5988ef0e37584be81142aba4d007b6e45a1770605342de
GET /img/logo.png HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:35 GMT
server: Apache/2.4.58 (Ubuntu)
vary: X-Forwarded-Proto
last-modified: Thu, 09 May 2024 14:34:26 GMT
etag: "132c-6180650e04ad7"
accept-ranges: bytes
content-length: 4908
x-ua-compatible: IE=edge,chrome=1
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/images/general/google-logo.svg | 34.149.196.159 | 200 OK | 688 B |
URL GET HTTP/2www.kosoghygge.com/landers/images/general/google-logo.svg IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeSVG Scalable Vector Graphics image Hash686f8efa6e3e28e96d1c08399e8d353d 4524589b0dceefb6ae6389f36634441df69152d5 0cf576a5dab9315daac7ffe29d29ed585e0ff9850e59408d0f25f38dc1da037b
GET /landers/images/general/google-logo.svg HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:35 GMT
server: nginx/1.14.2
content-type: image/svg+xml
content-length: 688
last-modified: Wed, 08 May 2024 10:32:55 GMT
etag: "663b54d7-2b0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 11173344
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/js/ad-provider.js | 34.149.196.159 | 200 OK | 512 B |
URL GET HTTP/2www.kosoghygge.com/landers/js/ad-provider.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeASCII text, with very long lines (979) Hashacd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681
GET /landers/js/ad-provider.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:45:44 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: "663b54e4-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 36612153 34302308
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/images/loader/loading.gif | 34.149.196.159 | 200 OK | 2.9 kB |
URL GET HTTP/2www.kosoghygge.com/landers/images/loader/loading.gif IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeGIF image data, version 89a, 128 x 15 Hash62b08454087f1ef8b27bd2bcda330537 cac1914632f4c859f6176a84078f1017bad069f8 06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6
GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:35 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Wed, 08 May 2024 10:32:56 GMT
etag: "663b54d8-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 19894179
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/favicon/apple-touch-icon-180x180.png | 34.149.196.159 | 404 Not Found | 280 B |
URL GET HTTP/3www.kosoghygge.com/favicon/apple-touch-icon-180x180.png IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text Hashc0d3a2ffd3b8206a1dc423b1e44f7195 38096e272ccb984907da0cbcc3f65124bd92a6d7 aa04b53c21b07814e7ba8c7e4b63b3d8aa7937b567741221b3f30458addcf4f3
GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 13:49:36 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s | 142.250.74.164 | 200 OK | 909 B |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
Hash64528b7ee839755213867a0048ec169a 54b743ce06486c3215486d8b91ba452e64bb2dbb 341ef006bcec1a01273698695fe612fcc9b1877df07f9d78410e53c8ab9ba2c7
GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 13:49:35 GMT
date: Fri, 10 May 2024 13:49:35 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/js/vendor.js | 34.149.196.159 | 200 OK | 248 kB |
URL GET HTTP/3www.kosoghygge.com/landers/js/vendor.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (60065) Size248 kB (247977 bytes) Hash4662c02688fedbdc760e77a5de1ca088 aa357084acb5be934e3e47eae007ea6224c885bf 6836cd6a90348524e132e51f3c5cce05c28f8333ad5de9dddc28e24033404d75
GET /landers/js/vendor.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:49:36 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: W/"663b54e4-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 34303090
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.35 | 200 OK | 204 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/media-registry.js | 34.149.196.159 | 200 OK | 8.8 kB |
URL GET HTTP/3www.kosoghygge.com/landers/media-registry.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash7db515478934022835aa54960924e1e9 108c8d1fcf00efbc2fb81cb7ac12563ac1dcc370 12d97cd754643b6f1554ffa21d1c569554fcb17eb9477724ffff5288137b8c30
GET /landers/media-registry.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:07:11 GMT
server: nginx/1.14.2
x-goog-generation: 1715166708679572
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=3xOWCg==, md5=fbUVR4k0Aig1qlSWCSTh6Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPpabmjgHkOAlDbJ02OsqCP7Hh7HRt30ibAMP1YzFtewc4Cgm0H7YeG26rXQ9whzREqXKnEtSLtg2A
age: 2545
last-modified: Wed, 08 May 2024 11:11:48 GMT
etag: "7db515478934022835aa54960924e1e9-gzip"
content-type: application/javascript
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8780
via: 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/translations/nb-no2.json | 34.149.196.159 | 200 OK | 218 kB |
URL GET HTTP/3www.kosoghygge.com/landers/translations/nb-no2.json IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Size218 kB (218064 bytes) Hash03b5a86609e5b54a54f2d4aa9c4de6be 2b28f57afd7505c6b4daa22867970c84396dd642 459139ce69de1a12b7372c8ca54b3f68a0d6b3a24c499849f3daa892fdc25183
GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:03:37 GMT
server: nginx/1.14.2
content-length: 218064
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPr5GhnDgRjGenhTpAU7A44ERvQV5_gFe5yRP6IASWR63Cofk8njexB0BSsjm30OIBqtLTQaCKGFlQ
age: 2759
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google
|
|
| samlesamtykke.com/cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=4bd0722e30eb4459a560df0e5a7a1908 | 35.195.163.35 | 200 OK | 14 kB |
URL GET HTTP/2samlesamtykke.com/cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=4bd0722e30eb4459a560df0e5a7a1908 IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
File typeJavaScript source, ASCII text Hash4b2e484406c21221a64ee0d4dd64eadb a163d3cdea6b9683ee7623dbe8d215fada9a89da 598d6b5387c0edc239390ba90024bc93c06d60ecc418005e70781c066b0cf62d
GET /cc.js?wId=7NAbiKFF1VQ7gWk99P3mAj&domain=kosoghygge.com&languageCode=nb&languageTerritory=NO&sessionId=4bd0722e30eb4459a560df0e5a7a1908 HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:36 GMT
content-type: application/javascript
content-length: 14215
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 19:34:32 GMT
expires: Tue, 06 May 2025 19:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 324904
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/css/landing001.css | 34.149.196.159 | 200 OK | 40 kB |
URL GET HTTP/2www.kosoghygge.com/landers/css/landing001.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typegzip compressed data, from Unix Hash6d7ca681b16b3695fae89c641b7988ff 35c1d45e47c2d603831bbc9aa9a7286e167caa86 5a7a28da289a6afb7918593064dd46f7b051cb4879c5415d28a8c1b1660a5a6b
GET /landers/css/landing001.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:36 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 34303086
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.35 | 200 OK | 204 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB | 142.250.74.72 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP142.250.74.72:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3484) Hashee1fd322869ca32769374c31e3faee72 f6a53dbb0d568741765e37802ca3ddb6d647a740 a0b2b5197e217b1b13318fca6c13835105a818752d25361b5720bc3be4213a95
GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 13:49:36 GMT
expires: Fri, 10 May 2024 13:49:36 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73327
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 03:22:23 GMT
expires: Sat, 10 May 2025 03:22:23 GMT
cache-control: public, max-age=31536000
age: 37634
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 18:37:19 GMT
expires: Mon, 05 May 2025 18:37:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 414738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.35 | 200 OK | 204 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:12:34 GMT
expires: Tue, 06 May 2025 16:12:34 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337023
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17542) Hash7c111ad0cbb18935696bc8bb0846ec26 a9c77f0678ff71a4032e787999ada733e7da10cf 120846a7bd9fdcbff2f47564e0d9fc564fc100c581f5f1881333f70f3bd00d6f
GET /js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:06:37 GMT
expires: Sat, 10 May 2025 01:06:37 GMT
cache-control: public, max-age=31536000
age: 45780
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:54:07 GMT
expires: Thu, 16 May 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 125730
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash4a4d324e64be013b42cf71f9d03baa21 b18c0d98e896b730a9ab2111c6bdf53f5c9ee4d9 38e2bcd264151ea98712a5f72f6776899514c974d219c8bb9aec15da5800b871
GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 13:49:37 GMT
expires: Fri, 10 May 2024 13:49:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| samlesamtykke.com/cc.css | 35.195.163.35 | 200 OK | 3.9 kB |
IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
File typeassembler source, ASCII text Hashddb6776d9e0b9844c9f57355d7492805 da918eb4fefa9d625e5858496c2c4a20ad893619 9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34
GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:37 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/collector | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/collector IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:37 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/collector | 35.195.163.35 | 200 OK | 4.7 kB |
URL POST HTTP/2api.samlesamtykke.com/consent/collector IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hash8c1258f41bc396970cde5c88a3246960 2da5e77b585b86993b64346a510e5d5d1e11fac3 4880615bc787c017b313ee0e67a0be2c7e7cf58c512f4d1f7a0daefac21273e0
POST /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:37 GMT
content-type: application/vnd.api+json
content-length: 4654
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 371 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashaad76f926b6c219e918916e6f25e4129 4823643373db875486f8ac895ea532106e6798d4 0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 354 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashf3306f051731bcce1d98a030b8a2d9cf ada4a5bb07ee1872a579a651298774329b036f43 cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kosoghygge.com/
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 515
Origin: https://www.kosoghygge.com
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:49:38 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.kosoghygge.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 | 142.250.74.164 | 200 OK | 46 kB |
URL GET HTTP/3www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (37772) Hash163dce1952e61099b5b54f39cbfd949b a74ef4fbf7d0e2bb03c50e1c819e84aade373ce6 c8360f6a832b6b4be07b6d8db84b8080cced333589f98e2e26d0cb11c433c20f
GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 13:49:36 GMT
content-security-policy: script-src 'nonce-tu0YYL1v2ZEVVznM_Ytw3w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn | 34.149.196.159 | 200 OK | 20 kB |
URL User Request GET HTTP/2www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text, with very long lines (2091) Hash5d96a2c587e7ea5260e7071af463750c 08eb3690b3a821d25284c3b7d38402a85ec5479e 1f1d460c98641178c08c1350ea41a86de9a3d4a82280fd553d67203d78f14c36
GET /landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:35 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 19548524
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/landers/images/landing001/default/default/serie01_01.jpg?geo=no | 34.149.196.159 | 200 OK | 37 kB |
URL GET HTTP/3www.kosoghygge.com/landers/images/landing001/default/default/serie01_01.jpg?geo=no IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 467x682, components 3 Hash8580663a886d4a298da70883f173ef5c b042633a4dfbaeb33a97c4efc53b85a000730f5d a7b257fe27ccec06bf741eaed652f72bb556ae31b548648aa7e6b07c4e38a417
GET /landers/images/landing001/default/default/serie01_01.jpg?geo=no HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 13:49:36 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 36626
last-modified: Wed, 08 May 2024 10:32:55 GMT
etag: "663b54d7-8f12"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 9041663
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.kosoghygge.com/landers/css/fontawesome-all.min.css | 34.149.196.159 | 200 OK | 52 kB |
URL GET HTTP/2www.kosoghygge.com/landers/css/fontawesome-all.min.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeASCII text, with very long lines (51425) Hasha954e78371616c5b3b924fc9e83aa9b4 14912f17e86aa3d4d12c94b91646ddaac2ae0862 5986f251d278ae72106ef1d7302798a2e14f69a4d35b80087b9e61905a15e75e
GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:45:44 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Wed, 08 May 2024 10:32:54 GMT
etag: W/"663b54d6-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 36576248 36734112
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeASCII text, with no line terminators Hash88f0c38a7e2040f9de4edcadf67abd93 0fac6e63c661377c3a229dc53dadb04d96f1140a 732c8f6da5ca71626a4d4e2d7cd0ebe8e6b4453e70208fb1fef7ec2dd8fa84a6
GET /recaptcha/enterprise/webworker.js?hl=en&v=vjbW55W42X033PfTdVf6Ft4q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cua29zb2doeWdnZS5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3dyj2vlol0c7
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 10 May 2024 13:49:37 GMT
date: Fri, 10 May 2024 13:49:37 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/js/landing001.js | 34.149.196.159 | 200 OK | 64 kB |
URL GET HTTP/3www.kosoghygge.com/landers/js/landing001.js IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landers/js/landing001.js HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 13:49:36 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: W/"663b54e4-f7e1"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 34303094
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.google.com/recaptcha/enterprise.js | 142.250.74.164 | 200 OK | 940 B |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js IP142.250.74.164:443
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeJavaScript source, ASCII text, with very long lines (940), with no line terminators Hash6e6255329de4c7b45588ebf1e1b0e7d2 f039287b884757624c8d9a633c9760a4597b43c1 7d2cfb7aff395543ce88b364bdf43017ab4fc6f827268b49739f9e3a1a1af447
GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kosoghygge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 13:49:35 GMT
date: Fri, 10 May 2024 13:49:35 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.kosoghygge.com/favicon/favicon.ico | 34.149.196.159 | 404 Not Found | 280 B |
URL GET HTTP/3www.kosoghygge.com/favicon/favicon.ico IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
File typeHTML document, ASCII text, with no line terminators Hash6884a60c1a0dab18a252f298bb96c60b fa1879e09cff7b14f99621cb988121be0f932182 348e29aaee19753affd712fcaa8502d77ad029a65c3fe77259044f1a4be608f4
GET /favicon/favicon.ico HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 13:49:36 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.kosoghygge.com/landers/css/theme/pornhub.css | 34.149.196.159 | 200 OK | 16 kB |
URL GET HTTP/2www.kosoghygge.com/landers/css/theme/pornhub.css IP34.149.196.159:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn CertificateIssuerGoogle Trust Services LLC Subjectkosoghygge.com Fingerprint0A:84:9E:5D:91:F6:43:86:01:22:4E:21:F5:1A:81:93:03:D3:77:26 ValidityThu, 11 Apr 2024 21:13:49 GMT - Wed, 10 Jul 2024 22:06:42 GMT
Hashf4ae50de2047fa3810f166e5cc795675 9555a3d277597583417fba072751b5a801e5cf7f 3518ac0248cd31556fb8ce0fc2a37827bd393eeb35722254afd6c2bb1cf95c87
GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.kosoghygge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kosoghygge.com/landing1?pi=102241&pt1=421268669&pe=018&zci=FNg32Z4Ubn
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:49:36 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: kosoghygge.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 36166358
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|