| tr.watchcpm.com/aff_c?offer_id=9609&aff_id=29592&aff_sub5=banner&source=7{var10}&click_id={clickid}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_3&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10} | 172.255.248.119 | | 866 B |
URL tr.watchcpm.com/aff_c?offer_id=9609&aff_id=29592&aff_sub5=banner&source=7{var10}&click_id={clickid}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_3&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10} IP172.255.248.119:0
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashecaa691df9c16c2960645625bb7721bb d86bd92a8d6624e2926f10d31fbe5e1ef497926c 36a86e69fc1be3e0c3762dd40522a3612a9c2df94b5bf46e0b102d78ad172e86
GET /aff_c?offer_id=9609&aff_id=29592&aff_sub5=banner&source=7{var10}&click_id={clickid}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_3&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10}/rd.html?go=https://getmedirty.com/tds?tdsId=s9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7{var10} HTTP/1.1
Host: tr.watchcpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 07:58:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 866
Connection: keep-alive
Content-Security-Policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 0
Set-Cookie: language=en; Domain=tr.watchcpm.com; Path=/; Expires=Sun, 26 May 2024 07:58:54 GMT
test=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
Location: aff_c?offer_id=9949&aff_id=29592&aff_sub5=banner&source=7%7Bvar10%7D&click_id=%7Bclickid%7D%2Frd.html%3Fgo%3Dhttps%3A%2F%2Fgetmedirty.com%2Ftds%3FtdsId%3Ds9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7%7Bvar10%7D&last=3
Vary: Accept
Cache-Control: no-store, no-cache
|
|
| tr.watchcpm.com/aff_c?offer_id=9949&aff_id=29592&aff_sub5=banner&source=7%7Bvar10%7D&click_id=%7Bclickid%7D%2Frd.html%3Fgo%3Dhttps%3A%2F%2Fgetmedirty.com%2Ftds%3FtdsId%3Ds9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7%7Bvar10%7D&last=3 | 172.255.248.119 | | 416 B |
URL tr.watchcpm.com/aff_c?offer_id=9949&aff_id=29592&aff_sub5=banner&source=7%7Bvar10%7D&click_id=%7Bclickid%7D%2Frd.html%3Fgo%3Dhttps%3A%2F%2Fgetmedirty.com%2Ftds%3FtdsId%3Ds9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7%7Bvar10%7D&last=3 IP172.255.248.119:0
File typeHTML document, ASCII text, with very long lines (416), with no line terminators Hash958b4626ca436da607e9e5d9e6bc02fa 0c83957a3d8215807517bd9f7726463cb42df0d7 d5c1c2694d94c88be92400ecf98ca23590584bf4a3ef754e6940cb8d13694e71
GET /aff_c?offer_id=9949&aff_id=29592&aff_sub5=banner&source=7%7Bvar10%7D&click_id=%7Bclickid%7D%2Frd.html%3Fgo%3Dhttps%3A%2F%2Fgetmedirty.com%2Ftds%3FtdsId%3Ds9183ale_r&tds_campaign=s9183ale&utm_campaign=a0c2d620&utm_content=29592&utm_source=ddm&s1=ddn&s2=general&data2=31_29592_9609_2ab79ef20c10cd699863cb71a69416ba&p1=fndp&p5=lp_1&s3=7%7Bvar10%7D&last=3 HTTP/1.1
Host: tr.watchcpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: language=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 07:58:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 416
Connection: keep-alive
Content-Security-Policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 0
Set-Cookie: language=en; Domain=tr.watchcpm.com; Path=/; Expires=Sun, 26 May 2024 07:58:54 GMT
test=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
9949=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48; Domain=tr.watchcpm.com; Path=/; Expires=Sun, 26 May 2024 07:58:54 GMT; Secure; SameSite=None
op_9949=0; Domain=tr.watchcpm.com; Path=/; Expires=Sun, 26 May 2024 07:58:54 GMT
user_id=d7c17bb7-7c0b-4019-a714-34e11330fc11_fc6893cc39ddacccec31bd0f712deab8; Domain=tr.watchcpm.com; Path=/; Expires=Wed, 25 Apr 2029 07:58:54 GMT; Secure; SameSite=None
Location: /rd.html?go=https%3A%2F%2Fqueitho.com%2Fclient%3Fcamp%3Ds3%26aff_id%3D2%26aff_sub%3D29592%26source%3D29592%26aff_sub2%3Dbanner%26click_id%3D32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48
Vary: Accept
Cache-Control: no-store, no-cache
|
|
| tr.watchcpm.com/rd.html?go=https%3A%2F%2Fqueitho.com%2Fclient%3Fcamp%3Ds3%26aff_id%3D2%26aff_sub%3D29592%26source%3D29592%26aff_sub2%3Dbanner%26click_id%3D32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48 | 172.255.248.119 | | 255 B |
URL tr.watchcpm.com/rd.html?go=https%3A%2F%2Fqueitho.com%2Fclient%3Fcamp%3Ds3%26aff_id%3D2%26aff_sub%3D29592%26source%3D29592%26aff_sub2%3Dbanner%26click_id%3D32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48 IP172.255.248.119:0
File typeHTML document, ASCII text Hashd032811d8a01caff2a5ce141a657ca0e 7cfb5ac640b5496f18939ee73dc89cccf77125cc e2efe220662dd9a54582aa6ab3f6d9fcaf0341710d0b01aa051fc09258ff9e6e
GET /rd.html?go=https%3A%2F%2Fqueitho.com%2Fclient%3Fcamp%3Ds3%26aff_id%3D2%26aff_sub%3D29592%26source%3D29592%26aff_sub2%3Dbanner%26click_id%3D32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48 HTTP/1.1
Host: tr.watchcpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: language=en; 9949=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48; op_9949=0; user_id=d7c17bb7-7c0b-4019-a714-34e11330fc11_fc6893cc39ddacccec31bd0f712deab8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 07:58:54 GMT
Content-Type: text/html
Last-Modified: Fri, 13 Aug 2021 14:56:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61168831-149"
Cache-Control: no-store, no-cache
Content-Encoding: gzip
|
|
| oacenom.com/ckset | 188.114.96.1 | | 117 B |
IP188.114.96.1:0
Hash95e6917282d256c6f850322e1112f446 b758910ad5b2fe919f64f2eda4f74ea5a53eb5ed fcca2f614d1b5c116f8ee023750224e42a4d44ee1275ce0c5613c5b5d2c8ed53
POST /ckset HTTP/1.1
Host: oacenom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://queitho.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 201 Created
date: Fri, 26 Apr 2024 07:58:55 GMT
content-type: application/json; charset=utf-8
content-length: 117
content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
set-cookie: mastidencook=ef4865f2-face-4839-b0d0-463e7ab7e97d_2736ead738170c2570ac2dfd9bfd5bba; Domain=oacenom.com; Path=/; Expires=Wed, 25 Apr 2029 07:58:55 GMT; Secure; SameSite=None
etag: W/"75-t1iRCtWy/pGfZPLtpPdOpaU+te0"
access-control-allow-origin: https://queitho.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OpIvf1%2BntaSYNB1ERKzuqQ1j4fdQwrqp%2FKBXq4r49JnRsxr%2Fr2H5WHYlMgtrd0oUnMtUVJaw8QpYhuzpJi8Cm3E%2ByGNbfWNfIUUAtr%2B%2Fh%2FKjmwB5jysbTzzn1B913Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a507ca4df05688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| queitho.com/visit?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=s3&p_camp=&bstep=&sid=&efcn=custom-unknown&cntp=custom-unknown&sch=&scw=&vph=&vpw=<= | 104.21.79.101 | | 817 B |
URL queitho.com/visit?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=s3&p_camp=&bstep=&sid=&efcn=custom-unknown&cntp=custom-unknown&sch=&scw=&vph=&vpw=<= IP104.21.79.101:0
Hash006f5e237970b645789c437bba6e937b ff70363bf517e9ca9418257b03bb7901c7f6ea4f 0955048307d20e5bebf83b15c8ce2c15f29c6324b3c53642d383afb02afea600
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /visit?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=s3&p_camp=&bstep=&sid=&efcn=custom-unknown&cntp=custom-unknown&sch=&scw=&vph=&vpw=<= HTTP/1.1
Host: queitho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 405
Origin: https://queitho.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 201 Created
date: Fri, 26 Apr 2024 07:58:55 GMT
content-type: application/json; charset=utf-8
content-length: 817
content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
set-cookie: browserLanguage=en; Domain=queitho.com; Path=/; Expires=Sun, 26 May 2024 07:58:55 GMT
userId=523ce380-b5de-4f38-b35e-c6cede4a5627_3f9f4fdc46ef2e2a51fe4a3fca450472; Domain=queitho.com; Path=/; Expires=Wed, 25 Apr 2029 07:58:55 GMT; Secure; SameSite=None
cache-control: no-store, no-store, no-cache
etag: W/"331-/3A2O/UX6cqUGCV7A7t5Acf26k8"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RCX9gv%2BcOIC1d%2BC6t7WnXgIMGcJdbUbu9LhQRApwO%2FoYOBd%2B%2FBO0BJJrhjFX0non4gwJzHxFVsWPXxkMWtacw7WgplvpJXQMgR%2FrKMCTTOGwoYCjuzX9ATKBTblj0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a507caefdeb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| queitho.com/fl?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=&sid=s3&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<= | 104.21.79.101 | | 1.3 kB |
URL queitho.com/fl?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=&sid=s3&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<= IP104.21.79.101:0
Hash9a6a871e5ca8dee6bcd40503bf807fea fbba9b00191e2d3205662e0b62b37a88091b5bde e508699e3eb5c02e74f12dd5936a4d7ae5bb688aa4c838f4f48b3587b264168b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /fl?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=&sid=s3&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<= HTTP/1.1
Host: queitho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 412
Origin: https://queitho.com
DNT: 1
Connection: keep-alive
Cookie: browserLanguage=en; userId=523ce380-b5de-4f38-b35e-c6cede4a5627_3f9f4fdc46ef2e2a51fe4a3fca450472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 201 Created
date: Fri, 26 Apr 2024 07:58:55 GMT
content-type: application/json; charset=utf-8
content-length: 1316
content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
set-cookie: browserLanguage=en; Domain=queitho.com; Path=/; Expires=Sun, 26 May 2024 07:58:55 GMT
cache-control: no-store, no-store, no-cache
etag: W/"524-+7qbABkeLTIFZi4LYrN6iAkbW94"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1y5RU%2B7mOqhdgF120bQlpkZfizCCH5tan4dHNCrMV5cA%2FNpg6Z5yrwjkNs7J6zY2I4G998%2F1UuvzGW2j2WTHQqaQ%2BTXRlpc2LRwe25DzEq7C%2BWZarO79fQCQ4sjMCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a507cb684ab527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| queitho.com/ofp?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=0&sid=s3&ofp_id=111&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<=0 | 104.21.79.101 | | 231 B |
URL queitho.com/ofp?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=0&sid=s3&ofp_id=111&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<=0 IP104.21.79.101:0
Hash035a16f5ea8d845d20b320c0b5e82019 3c3ed67591b0d050c62c41c5696dfbbe216718a4 311b66c00120dd36a66f83837ba24fda2b7d4daa2839ddd1a6d1339db5da9262
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /ofp?aff_id=2&aff_sub=29592&aff_sub2=banner&click_id=32_29592_9949_a4cedc0dd70a9f823953c5a6e5a24a48&source=29592&ttype=direct&camp=f109&sl_cid=4f5d0312-0016-4ea1-9f8d-ab30b4926872_bf5aa4f97e4d47d4ab5a10cebdbf8459&p_camp=&bstep=0&sid=s3&ofp_id=111&efcn=custom-unknown&cntp=custom-unknown&sch=1024&scw=1280&vph=1024&vpw=1280&ref=https%3A%2F%2Ftr.watchcpm.com%2F<=0 HTTP/1.1
Host: queitho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 419
Origin: https://queitho.com
DNT: 1
Connection: keep-alive
Cookie: browserLanguage=en; userId=523ce380-b5de-4f38-b35e-c6cede4a5627_3f9f4fdc46ef2e2a51fe4a3fca450472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 201 Created
date: Fri, 26 Apr 2024 07:58:55 GMT
content-type: application/json; charset=utf-8
content-length: 231
content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
set-cookie: browserLanguage=en; Domain=queitho.com; Path=/; Expires=Sun, 26 May 2024 07:58:55 GMT
cache-control: no-store, no-store, no-cache
etag: W/"e7-PD7WdZGw0FDGLEHFaW37viFnGKQ"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vfb9C55q7wq0Sgo9FfjUzm4mhjq34pn%2BESFIsIWUEWbPmNolAekbXvcBcNX4Y6E7yU0ks5jIwLPkqgzTCq2onPLNcw8I%2FIXJuccSDFuZn9yKNxgJlVlajRHvmuJIvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a507cc2915b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rgqval.awaitingdream.net/?s5=dit1029&j9=1&ban=other&s2=2005070&click_id=a15c90a3ed8c68785dc95a8130e9e411c0e22454&tds_cid=a15c90a3ed8c68785dc95a8130e9e411c0e22454&utm_source=e2905f55ec3a568b&s1=134504&s3=sml_e1f18e7f&j1=1 | 52.19.138.177 | | 136 B |
URL rgqval.awaitingdream.net/?s5=dit1029&j9=1&ban=other&s2=2005070&click_id=a15c90a3ed8c68785dc95a8130e9e411c0e22454&tds_cid=a15c90a3ed8c68785dc95a8130e9e411c0e22454&utm_source=e2905f55ec3a568b&s1=134504&s3=sml_e1f18e7f&j1=1 IP52.19.138.177:0
File typeHTML document, ASCII text Hasha245362d661b6071fb748874ba21d24f 696dbf58c0723644f0d40e6a9d2b6419a4a04a6e d0c4f9e32403ab2abb02027846fb0fbe21d53b1a515d656c314f2e935f0c3648
GET /?s5=dit1029&j9=1&ban=other&s2=2005070&click_id=a15c90a3ed8c68785dc95a8130e9e411c0e22454&tds_cid=a15c90a3ed8c68785dc95a8130e9e411c0e22454&utm_source=e2905f55ec3a568b&s1=134504&s3=sml_e1f18e7f&j1=1 HTTP/1.1
Host: rgqval.awaitingdream.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://empirelayer.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/html; charset=utf-8
content-length: 136
location: https://cy.trck-capt-prv2.com/click?o=4691&a=198&sub_id1=pewck662b5ec0000da483&sub_id3=134504_2005070
set-cookie: unique_id=662ae14900087124; Path=/; Expires=Tue, 25 Jun 2024 07:58:56 GMT; Secure; SameSite=None
unique_id2=662ae149000a3852; Path=/; Expires=Thu, 25 Jul 2024 07:58:56 GMT; Secure; SameSite=None
662ae149000a3852_c=1; Path=/; Expires=Thu, 25 Jul 2024 07:58:56 GMT; Secure; SameSite=None
ref_token=195527_134504; Path=/; Expires=Sun, 26 May 2024 07:58:56 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Fri, 26 Apr 2024 07:58:56 GMT; Secure; SameSite=None
tid=pewck662b5ec0000da483; Path=/; Expires=Sat, 31 Mar 2029 07:58:56 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| cy.trck-capt-prv2.com/favicon.ico | 18.158.184.216 | | 0 B |
URL cy.trck-capt-prv2.com/favicon.ico IP18.158.184.216:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: cy.trck-capt-prv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: U-ba9fab001f67381e56e410575874d967=unique; o_ba9fab001f67381e56e410575874d967=e150107d-0bdf-45bc-9045-d851aef345dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: awselb/2.0
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/plain; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
|
|
| hubtrack.eu/?aff_id=9737&offer_id=13995&ext_id=9c61417f42713d6edabcd6007cb1d70b&source=198_134504_2005070 | 89.185.246.143 | 302 Found | 233 B |
URL User Request GET HTTP/1.1hubtrack.eu/?aff_id=9737&offer_id=13995&ext_id=9c61417f42713d6edabcd6007cb1d70b&source=198_134504_2005070 IP89.185.246.143:443 ASN#24971 Master Internet s.r.o.
CertificateIssuerLet's Encrypt Subjecthubtrack.eu FingerprintC6:63:00:89:3E:B4:78:7F:00:57:F2:D8:19:D1:BE:CB:93:F2:30:E8 ValidityTue, 20 Feb 2024 09:46:46 GMT - Mon, 20 May 2024 09:46:45 GMT
File typeHTML document, ASCII text Hash04d34cfad88a6e1874e6bdd668ff8ff0 1aae9d5cd3d9653fdc668c4b410b72ce4af6c35b 17586fc2cd9c8e4e9e17823cb985a6a2c2e59631b81b28ca5e5ea8952ba63187
GET /?aff_id=9737&offer_id=13995&ext_id=9c61417f42713d6edabcd6007cb1d70b&source=198_134504_2005070 HTTP/1.1
Host: hubtrack.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 07:56:19 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
X-Powered-By: Nette Framework 3
Vary: X-Requested-With
Set-Cookie: _nss=1; path=/; secure; HttpOnly; SameSite=Strict
aff-c337dbadeb360c50d94e44353601ecc9=a%3A3%3A%7Bs%3A2%3A%22id%22%3Bi%3A4476668173%3Bs%3A4%3A%22trid%22%3Bs%3A22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%3Bs%3A3%3A%22get%22%3Ba%3A4%3A%7Bs%3A6%3A%22aff_id%22%3Bi%3A9737%3Bs%3A8%3A%22offer_id%22%3Bi%3A13995%3Bs%3A6%3A%22ext_id%22%3Bs%3A32%3A%229c61417f42713d6edabcd6007cb1d70b%22%3Bs%3A6%3A%22source%22%3Bs%3A18%3A%22198_134504_2005070%22%3B%7D%7D; expires=Sat, 27-Apr-2024 07:56:19 GMT; Max-Age=86400; path=/; secure; HttpOnly; SameSite=Lax
X-Click-Id: 4476668173
X-TransactionId: z6pQiwOGt72WGmNf1PWWV7
Location: https://hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b&
Strict-Transport-Security: max-age=63072000
X-Content-Type-Options: nosniff
|
|
| www.hookeportalen.com/img/country_flag_icon_gb.png | 77.93.196.119 | 200 OK | 6.2 kB |
URL GET HTTP/2www.hookeportalen.com/img/country_flag_icon_gb.png IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash95ac71725790e555982d4f2b38a9e970 75b3cdc4b565a82b25340ac515ffa85f07ec68aa 43130693ca0e67315df363cc1a1f1f79914504435782a247f046d06424a2f0b7
GET /img/country_flag_icon_gb.png HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/png
content-length: 6222
last-modified: Tue, 05 Mar 2024 13:25:12 GMT
etag: "65e71d38-184e"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/js/services/gtm.min.js?3fee57ea | 77.93.196.119 | 200 OK | 98 kB |
URL GET HTTP/2www.hookeportalen.com/js/services/gtm.min.js?3fee57ea IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Hash9ddbb6cae9745e35619e41f7b2f5e164 27077c0f482360cb5d7e8cba5ff11d617419438c 89decb92a941d07d9a1633a33f5227e82e71b58e6c0d4c8e3d7fc760f21d3671
GET /js/services/gtm.min.js?3fee57ea HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 29 Dec 2022 08:14:19 GMT
vary: Accept-Encoding
etag: W/"63ad4c5b-1f0"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/vendor/jquery/dist/jquery.min.js | 77.93.196.119 | 200 OK | 36 kB |
URL GET HTTP/2www.hookeportalen.com/vendor/jquery/dist/jquery.min.js IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Hashf3a26bdf0fccd4a8514b1bd4852eb4a8 5db694a1f1524acce5f5be05d371037a6d5fe39c f4b57f7cd06b14b6fbe65057e3d597be52abdb02b64cca1bda9d9ad68f96324b
GET /vendor/jquery/dist/jquery.min.js HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 30 Jun 2017 09:11:39 GMT
vary: Accept-Encoding
etag: W/"595615cb-17b8b"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/sprites2.png?df8a6557 | 77.93.196.119 | 200 OK | 2.9 kB |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/sprites2.png?df8a6557 IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 69 x 216, 8-bit/color RGBA, non-interlaced Hash1223b198f79be430b6faac39e884050f b06c5a2d801f34a6ce6b693c25aba83f8a7f758d 68ed05d0e19e85c9a895ce14b0b8cc7ce48eea6ecf5d45648458440f1fa1e792
GET /img/lp/lux/sprites2.png?df8a6557 HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/png
content-length: 2924
last-modified: Fri, 11 May 2018 14:33:56 GMT
etag: "5af5a9d4-b6c"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/js/polyfill.min.js?39a4304c | 77.93.196.119 | 200 OK | 2.0 kB |
URL GET HTTP/2www.hookeportalen.com/js/polyfill.min.js?39a4304c IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Hashfd6fe2a397ac6426cfe92c866e0d1d51 de72bf59ac56553cdefb60b0f612528d49ef057b c58dbd6bc0f57d1c319024cf5038179d1d4ca91035efec3f6ca7acc553634244
GET /js/polyfill.min.js?39a4304c HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 03 May 2022 11:55:44 GMT
vary: Accept-Encoding
etag: W/"62711840-dd6"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/stars.png?b773f04a | 77.93.196.119 | 200 OK | 1.4 kB |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/stars.png?b773f04a IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 118 x 45, 8-bit/color RGBA, non-interlaced Hash0b64450cdca40d5995c44a3a9d7c594e b6283c9a412d7ee161cd6676d3d1b136a58fba6b e16adead61579cae0306f6028b1db6340798d433753b80767e7cc36899a4c178
GET /img/lp/lux/stars.png?b773f04a HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/png
content-length: 1427
last-modified: Wed, 14 Feb 2018 12:09:26 GMT
etag: "5a8426f6-593"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/tail.png?148badea | 77.93.196.119 | 200 OK | 163 B |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/tail.png?148badea IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 40 x 42, 2-bit colormap, non-interlaced Hash7e416b8c543455c698112477ef582b9e 368cf9269a05f966b23a08fd052f63f42b9da907 5ee5580dfdc8182505f7df89c5caa6ea1d2eecad4294bcc064f84db7b98656c7
GET /img/lp/lux/tail.png?148badea HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/png
content-length: 163
last-modified: Wed, 14 Feb 2018 12:09:26 GMT
etag: "5a8426f6-a3"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TH5LF8L | 142.250.74.168 | 200 OK | 79 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TH5LF8L IP142.250.74.168:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (18372) Hashcac6f4695d30b9a8cf6092b7788d56d7 ec6c99ec072347db320746a799f616b677caa8aa a3826d3356300ab166df955b9453e18c691f2f54abbb838ae8d808edf430c2e3
GET /gtm.js?id=GTM-TH5LF8L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 07:58:57 GMT
expires: Fri, 26 Apr 2024 07:58:57 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/favicon-310x310.png?cd80af12 | 77.93.196.119 | 200 OK | 40 kB |
URL GET HTTP/2www.hookeportalen.com/favicon-310x310.png?cd80af12 IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 310 x 310, 8-bit/color RGBA, non-interlaced Hash41d21595e87d05665dd5a167fe74f582 538376d7fab0e08fa6ec287c2872b0650092f201 3f84c4bb0c96b6c173ba4e23f0ba51ed67b84a077e2e080579a04b38bb14790e
GET /favicon-310x310.png?cd80af12 HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: image/png
content-length: 40152
last-modified: Fri, 11 May 2018 14:33:56 GMT
etag: "5af5a9d4-9cd8"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/js/lp/skrestapi.min.js?39a4304c&_=1714118337290 | 77.93.196.119 | 200 OK | 8.1 kB |
URL GET HTTP/2www.hookeportalen.com/js/lp/skrestapi.min.js?39a4304c&_=1714118337290 IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Hashd6e5c4fa4326c97ed40ccb648ab85f08 d833a60bb7bef0b52a15294f4e6a488bfd793e29 89cce47bdea8e30075bdb373bf91ae55d0d7d87153a6c8f0d04fc0a739c20740
GET /js/lp/skrestapi.min.js?39a4304c&_=1714118337290 HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 03 May 2022 11:55:44 GMT
vary: Accept-Encoding
etag: W/"62711840-1cb8"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/loading.gif?a57354db | 77.93.196.119 | 200 OK | 1.9 kB |
URL GET HTTP/2www.hookeportalen.com/img/lp/loading.gif?a57354db IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeGIF image data, version 89a, 28 x 28 Hashaa739e221648d729d5a4d2e9bc7b8649 c4eb9c718e0e0e58298482443a82e05b098fe13b be55c8fc639ab0b327d742bdbcc27511f1e89e016a258e29c3cfebfe44e14383
GET /img/lp/loading.gif?a57354db HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: image/gif
content-length: 1925
last-modified: Fri, 23 Mar 2018 14:39:08 GMT
etag: "5ab5118c-785"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/vendor/font-awesome/css/all.min.css | 77.93.196.119 | 200 OK | 121 kB |
URL GET HTTP/2www.hookeportalen.com/vendor/font-awesome/css/all.min.css IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Size121 kB (121217 bytes) Hash66942925d7df1b7a79f15f13dba00a91 ee2db0effdce9d9d6c628c35dc60c0436e010f99 f1aa9d178941c98bc398f4103fa598c2f1222f0a5e24ae87db2420a448d76922
GET /vendor/font-awesome/css/all.min.css HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/css
last-modified: Wed, 01 Jun 2022 11:48:24 GMT
vary: Accept-Encoding
etag: W/"62975208-189ae"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/ab-desktop-5.jpg | 77.93.196.119 | 200 OK | 23 kB |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/ab-desktop-5.jpg IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x621, components 3 Hashec2509780b41792a3e82c6452cad101e 4979160b54f032150ebd674ce53dd8b015a62a32 d79e54b27abec0e340ba9ca3a6563e452fc6bec38e8a16d5ef7138a9dcf7708f
GET /img/lp/lux/ab-desktop-5.jpg HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D; cb1=cb1-5; sk_uuid=7375d402-eae5-418e-b6a0-1d4cb2abea7d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: image/jpeg
content-length: 23180
last-modified: Tue, 09 Apr 2024 06:34:19 GMT
etag: "6614e16b-5a8c"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/upload/logo/www.hookeportalen.com.svg?182d318a | 77.93.196.119 | 200 OK | 2.7 kB |
URL GET HTTP/2www.hookeportalen.com/upload/logo/www.hookeportalen.com.svg?182d318a IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typegzip compressed data, from Unix Hash7d8343205f3fbc8459cfa17d4777afb5 90eecd225e43723202ac69c89a49325c7f901c7c 0ff59dc10024d50c38e4fffff7dd138beb7878999afb43f77353762515cec397
GET /upload/logo/www.hookeportalen.com.svg?182d318a HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: image/svg+xml
last-modified: Tue, 22 Sep 2020 11:19:52 GMT
vary: Accept-Encoding
etag: W/"5f69ddd8-1e6c"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 IP216.239.34.36:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hookeportalen.com
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.hookeportalen.com
date: Fri, 26 Apr 2024 07:58:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 IP216.239.34.36:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&en=page_view&_fv=1&_nsi=1&_ss=1&ep.lp_form_type=4&tfd=1135 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hookeportalen.com
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.hookeportalen.com
date: Fri, 26 Apr 2024 07:58:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 IP216.239.34.36:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RTY8L6W2N4>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 83
Origin: https://www.hookeportalen.com
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.hookeportalen.com
date: Fri, 26 Apr 2024 07:59:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 IP216.239.34.36:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3MTWNWW4KG>m=45je44o0v899473295z877517646za200&_p=1714118337184&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1067876386.1714118338&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714118337&sct=1&seg=0&dl=https%3A%2F%2Fwww.hookeportalen.com%2Flp%2F1%2F4%2F1&dt=hookeportalen.com&_s=2&tfd=6145 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 83
Origin: https://www.hookeportalen.com
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.hookeportalen.com
date: Fri, 26 Apr 2024 07:59:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cy.trck-capt-prv2.com/click?o=4691&a=198&sub_id1=pewck662b5ec0000da483&sub_id3=134504_2005070 | 18.158.184.216 | | 34 kB |
URL cy.trck-capt-prv2.com/click?o=4691&a=198&sub_id1=pewck662b5ec0000da483&sub_id3=134504_2005070 IP18.158.184.216:0
Hash88a42d414101531f4cebda6314a80073 68f385db9c62b95c46092c05c32e906c95f1ffae b2fb3d0b9cbff3ed23c3907c518f47ef0dd9b2ccc148d300435a01bd434f9a75
GET /click?o=4691&a=198&sub_id1=pewck662b5ec0000da483&sub_id3=134504_2005070 HTTP/1.1
Host: cy.trck-capt-prv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://empirelayer.club/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/html; charset=UTF-8
server: nginx/1.24.0
set-cookie: U-ba9fab001f67381e56e410575874d967=unique; expires=Sun, 26-May-2024 07:58:56 GMT; Max-Age=2592000; path=/; secure; SameSite=None
o_ba9fab001f67381e56e410575874d967=e150107d-0bdf-45bc-9045-d851aef345dd; expires=Thu, 25-Jul-2024 07:58:56 GMT; Max-Age=7776000; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b& | 77.93.196.119 | 302 Found | 136 kB |
URL User Request GET HTTP/2hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b& IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
Size136 kB (136204 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b& HTTP/1.1
Host: hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/html; charset=utf-8
location: https://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b
x-powered-by: Nette Framework
x-frame-options: SAMEORIGIN
content-encoding: gzip
vary: X-Requested-With, Accept-Encoding
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/favicon.ico?97ef708f | 77.93.196.119 | 200 OK | 5.4 kB |
URL GET HTTP/2www.hookeportalen.com/favicon.ico?97ef708f IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hashf539b79d41644a94cf131911c6880d36 b9aca1ea6c8c93f30575391fad803044da0aad6e fe6aaf8f6a96fa1e8b920e5f181e0adf8c28567cf411cee8849812635aff5389
GET /favicon.ico?97ef708f HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Wed, 02 May 2018 09:47:49 GMT
etag: "5ae98945-1536"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b | 77.93.196.119 | 200 OK | 136 kB |
URL User Request GET HTTP/2www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
Size136 kB (136204 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: text/html; charset=utf-8
x-powered-by: Nette Framework
vary: X-Requested-With, X-Requested-With, Accept-Encoding
set-cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; expires=Mon, 10-Jun-2024 07:58:56 GMT; Max-Age=3888000; path=/; secure; SameSite=None
user_lang_id_ui=14; expires=Sun, 26-May-2024 07:58:56 GMT; Max-Age=2592000; path=/
user_lang_id_ui=14; expires=Sun, 26-May-2024 07:58:56 GMT; Max-Age=2592000; path=/
iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; expires=Mon, 10-Jun-2024 07:58:56 GMT; Max-Age=3888000; path=/; secure; SameSite=None
imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D; expires=Wed, 26-Apr-2034 07:58:56 GMT; Max-Age=315532800; path=/; HttpOnly
content-encoding: gzip
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/bg.jpg?faab2c97 | 77.93.196.119 | 200 OK | 97 kB |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/bg.jpg?faab2c97 IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x621, components 3 Hashfc3bda30785f8cafbe9cdfc12e22292e 7f160ff912bc89ba3b57a72013d9cfced02dec90 b9b452b0e0924e52d65db780129a27646206fe757b749653a77b864f80fcf86a
GET /img/lp/lux/bg.jpg?faab2c97 HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/jpeg
content-length: 97143
last-modified: Thu, 05 Sep 2019 09:03:15 GMT
etag: "5d70cf53-17b77"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/vendor/cookieconsent/cookieconsent.css | 77.93.196.119 | 200 OK | 19 kB |
URL GET HTTP/2www.hookeportalen.com/vendor/cookieconsent/cookieconsent.css IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeASCII text, with very long lines (18769), with no line terminators Hash040a18fdf93ea89b0baf24cff7aa5afe a285f599bbf3e9356f2b7faf4a876a5fc848b68c 6d6983638afff63021cd7cf480a1e841e0c445f948930776eb486858be48d24f
GET /vendor/cookieconsent/cookieconsent.css HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 07:13:05 GMT
vary: Accept-Encoding
etag: W/"61dfd101-4951"
cache-control: public, max-age=2592000, immutable
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/img/lp/lux/bubbles.png?c40e23fa | 77.93.196.119 | 200 OK | 710 B |
URL GET HTTP/2www.hookeportalen.com/img/lp/lux/bubbles.png?c40e23fa IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typePNG image data, 464 x 267, 4-bit colormap, non-interlaced Hash1d1cd7d64dfb24856414fc90588ac5ad a0e26885f7b1ca86c9a3bee5b8ac516119a4a814 23382f4efc7f079248ef8c845dd3d6c7831fb6cc4aac02c803f7dbcca3d78631
GET /img/lp/lux/bubbles.png?c40e23fa HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:56 GMT
content-type: image/png
content-length: 710
last-modified: Fri, 11 May 2018 14:33:56 GMT
etag: "5af5a9d4-2c6"
cache-control: public, max-age=2592000, immutable
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.hookeportalen.com/api/rest/v1/en-GB/member-landingpage-statistics | 77.93.196.119 | 201 Created | 494 B |
URL POST HTTP/2www.hookeportalen.com/api/rest/v1/en-GB/member-landingpage-statistics IP77.93.196.119:443 ASN#24971 Master Internet s.r.o.
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerLet's Encrypt Subjecthookeportalen.com Fingerprint07:9A:83:13:39:63:38:B4:99:BE:6B:58:91:57:67:22:DA:0D:27:98 ValidityWed, 06 Mar 2024 10:16:55 GMT - Tue, 04 Jun 2024 10:16:54 GMT
File typeASCII text, with very long lines (561), with no line terminators Hashed87d1aeb82406880b1c7ee148e4be44 bd227a55fd80fb2686b6f3a372f7a3435e642f04 19d155647cce1c9677956bc54852637d2dd5a045a54296ed197873320a52155f
POST /api/rest/v1/en-GB/member-landingpage-statistics HTTP/1.1
Host: www.hookeportalen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Access-Control-Allow-Origin: *
X-Requested-With: XMLHttpRequest
Content-Length: 85
Origin: https://www.hookeportalen.com
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/lp/1/4/1
Cookie: iaff=%7B%22e%22%3A%7B%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22afid%22%3A%229737%22%2C%22ofid%22%3A%2213995%22%2C%22source%22%3A%22198_134504_2005070%22%2C%22ext_id%22%3A%229c61417f42713d6edabcd6007cb1d70b%22%7D%2C%22a%22%3A%7B%22afid%22%3A9737%2C%22ofid%22%3A13995%2C%22trid%22%3A%22z6pQiwOGt72WGmNf1PWWV7%22%2C%22source%22%3A%22198_134504_2005070%22%7D%2C%22s%22%3A%22ImaxCash%22%7D; user_lang_id_ui=14; imx_lp=%7B%22title%22%3Anull%2C%22desc%22%3Anull%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 201 Created
server: nginx/1.25.2
date: Fri, 26 Apr 2024 07:58:57 GMT
content-type: application/json; charset=UTF-8
x-powered-by: Nette Framework
x-frame-options: SAMEORIGIN
access-control-allow-headers: access-control-allow-origin,content-type
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
content-encoding: gzip
vary: X-Requested-With, Accept-Encoding
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3MTWNWW4KG&cid=1067876386.1714118338>m=45je44o0v899473295z877517646za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=83599077 | 142.250.74.67 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3MTWNWW4KG&cid=1067876386.1714118338>m=45je44o0v899473295z877517646za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=83599077 IP142.250.74.67:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google.no FingerprintDE:35:DD:F6:8A:FF:6F:9D:0E:3D:27:DD:E2:B8:DE:CE:A4:6A:C8:C9 ValidityMon, 08 Apr 2024 07:44:18 GMT - Mon, 01 Jul 2024 07:44:17 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3MTWNWW4KG&cid=1067876386.1714118338>m=45je44o0v899473295z877517646za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=83599077 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 07:58:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-3MTWNWW4KG&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 302 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-3MTWNWW4KG&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.hookeportalen.com/?trid=z6pQiwOGt72WGmNf1PWWV7&afid=9737&ofid=13995&source=198_134504_2005070&ext_id=9c61417f42713d6edabcd6007cb1d70b CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size302 kB (302234 bytes) Hash312e825cf39734e209c6c56534548a02 ba63a1508334c22d1c846ef2176640aa751565f0 c8de422d7efd82f67d05c154685b3d28b2a7755e48c170b7dc15f0b32f3b7bc8
GET /gtag/js?id=G-3MTWNWW4KG&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hookeportalen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 07:58:57 GMT
expires: Fri, 26 Apr 2024 07:58:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100664
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|