HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Wed, 23 Feb 2022 10:23:39 GMT
Content-Type: text/html
Connection: keep-alive
Location: http://www.xn--verkty-fya.no/
Expires: Wed, 23 Feb 2022 11:23:39 GMT
Cache-Control: max-age=3600
Cache-Control: public
HTTP/1.1 308 Permanent Redirect
Date: Wed, 23 Feb 2022 10:23:39 GMT
Content-Type: text/html
Connection: keep-alive
Location: https://www.xn--verkty-fya.no
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 6e1fbd716d359073-FRA
HTTP/2 200
date: Wed, 23 Feb 2022 10:23:39 GMT
content-type: text/html; charset=UTF-8
content-security-policy-report-only: frame-ancestors 'self';block-all-mixed-content;default-src 'self';script-src 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' data: *.bmimin.com https://www.googleoptimize.com *.pingdom.net https://*.trustpilot.com https://*.googletagservices.com https://*.googlesyndication.com https://*.google.com https://*.googleadservices.com https://*.doubleclick.net https://js.klevu.com https://m.youtube.com https://www.youtube.com https://security-hub.vaimo.network https://translate.google.com https://translate.googleapis.com https://google-analytics.com https://ssl.google-analytics.com https://www.google-analytics.com https://forms.hsforms.com https://js-na1.hs-scripts.com https://js.hsforms.net https://js.hscollectedforms.net https://js.hs-analytics.net https://js.usemessages.com https://js.hubspotfeedback.com https://js.hsadspixel.net https://js.hs-banner.com https://js.hsleadflows.net https://js.hs-scripts.com https://*.nr-data.net https://js-agent.newrelic.com https://js.facebook.com https://graph.facebook.com https://connect.facebook.net https://use.typekit.net https://googletagmanager.com https://www.googletagmanager.com https://script.hotjar.com https://static.hotjar.com https://r.bing.com https://bat.bing.com https://code.jquery.com *.gstatic.com *.googleoptimize.com *.klarna.com *.videoly.co https://www.paypalobjects.com https://www.paypal.com *.klarnaservices.com sc-static.net *.tryggehandel.no;style-src 'self' 'report-sample' 'unsafe-inline' *.google.com js.klevu.com fonts.googleapis.com translate.googleapis.com *.typekit.net *.bing.com code.jquery.com *.googletagmanager.com *.klarnacdn.net;object-src *.googlesyndication.com *.youtube.com;frame-src 'self' gateway.zscalerthree.net gateway.zscaler.net gateway.zscalertwo.net gateway.zscloud.net *.googlesyndication.com *.doubleclick.net *.google.com www.youtube-nocookie.com *.youtube.com js.usemessages.com js.hscollectedforms.net connect.facebook.net *.facebook.com www.googletagmanager.com vars.hotjar.com sdx.microsoft.com *.klarnaservices.com *.paypal.com www.paypalobjects.com *.klarna.com *.prisguiden.no *.snapchat.com *.trustpilot.com js.hsadspixel.net forms.hsforms.com *.hubspot.com;child-src 'self' blob: *.googlesyndication.com *.doubleclick.net *.google.com www.youtube.com js.hscollectedforms.net js.hsadspixel.net forms.hsforms.com app.hubspot.com connect.facebook.net *.facebook.com js.usemessages.com www.googletagmanager.com *.paypal.com www.paypalobjects.com;img-src data: blob: *;font-src 'self' data: fast.fonts.net js.klevu.com fonts.googleapis.com fonts.gstatic.com use.typekit.net script.hotjar.com *.klarnacdn.net;connect-src 'self' edge.microsoft.com api.cognitive.microsofttranslator.com about: www.googletagservices.com *.googlesyndication.com *.google.com *.doubleclick.net stats.klevu.com *.vaimo.network fonts.gstatic.com fonts.googleapis.com www.gstatic.com translate.google.com translate.googleapis.com analytics.google.com ampcid.google.com stats.g.doubleclick.net www.google-analytics.com performance.typekit.net use.typekit.net *.nr-data.net connect.facebook.net *.facebook.com www.googletagmanager.com *.hotjar.io *.hotjar.com wss://*.hotjar.com forms.hsforms.com js.hs-scripts.com js.hs-analytics.net js.hsadspixel.net js.hubspotfeedback.com js.hs-banner.com js.hsleadflows.net js.usemessages.com api.hubapi.com *.hubspot.com *.bing.com wss://*.bing.com code.jquery.com *.klarnauserservices.com www.paypalobjects.com *.paypal.com *.klarnaevt.com *.trustpilot.com *.klarnaservices.com *.pingdom.net *.snapchat.com *.ksearchnet.com;manifest-src 'self';base-uri 'self';form-action 'self' *.vipps.no *.google.com connect.facebook.net *.facebook.com forms.hubspot.com forms.hsforms.com *.snapchat.com *.xn--verkty-fya.no;media-src 'self' data: *.gstatic.com dai.google.com hikoki-powertools.no;prefetch-src 'self' *.googlesyndication.com;worker-src 'self' blob: www.google.com;report-uri https://gate.rapidsec.net/g/r/csp/d45506e8-e36e-4049-bd8d-671e70be0ba8/0/7/3?sdkv=-1.-1.-1_unknown&sct=0f6184a8-edd6-41c5-aa7b-4b552fad73df&dpos=report;
content-security-policy: frame-ancestors 'self'; block-all-mixed-content; default-src 'self'; script-src 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' data: *.bmimin.com https://www.googleoptimize.com *.pingdom.net https://*.trustpilot.com https://*.googletagservices.com https://*.googlesyndication.com https://*.google.com https://*.googleadservices.com https://*.doubleclick.net https://js.klevu.com https://m.youtube.com https://www.youtube.com https://security-hub.vaimo.network https://translate.google.com https://translate.googleapis.com https://google-analytics.com https://ssl.google-analytics.com https://www.google-analytics.com https://forms.hsforms.com https://js-na1.hs-scripts.com https://js.hsforms.net https://js.hscollectedforms.net https://js.hs-analytics.net https://js.usemessages.com https://js.hubspotfeedback.com https://js.hsadspixel.net https://js.hs-banner.com https://js.hsleadflows.net https://js.hs-scripts.com https://*.nr-data.net https://js-agent.newrelic.com https://js.facebook.com https://graph.facebook.com https://connect.facebook.net https://use.typekit.net https://googletagmanager.com https://www.googletagmanager.com https://script.hotjar.com https://static.hotjar.com https://r.bing.com https://bat.bing.com https://code.jquery.com *.gstatic.com *.googleoptimize.com *.klarna.com *.videoly.co https://www.paypalobjects.com https://www.paypal.com *.klarnaservices.com sc-static.net *.tryggehandel.no; style-src 'self' 'report-sample' 'unsafe-inline' *.google.com js.klevu.com fonts.googleapis.com translate.googleapis.com *.typekit.net *.bing.com code.jquery.com *.googletagmanager.com *.klarnacdn.net; object-src *.googlesyndication.com *.youtube.com; frame-src 'self' gateway.zscalerthree.net gateway.zscaler.net gateway.zscalertwo.net gateway.zscloud.net *.googlesyndication.com *.doubleclick.net *.google.com www.youtube-nocookie.com *.youtube.com js.usemessages.com js.hscollectedforms.net connect.facebook.net *.facebook.com www.googletagmanager.com vars.hotjar.com sdx.microsoft.com *.klarnaservices.com *.paypal.com www.paypalobjects.com *.klarna.com *.prisguiden.no *.snapchat.com *.trustpilot.com js.hsadspixel.net forms.hsforms.com *.hubspot.com; child-src 'self' blob: *.googlesyndication.com *.doubleclick.net *.google.com www.youtube.com js.hscollectedforms.net js.hsadspixel.net forms.hsforms.com app.hubspot.com connect.facebook.net *.facebook.com js.usemessages.com www.googletagmanager.com *.paypal.com www.paypalobjects.com; img-src data: blob: *; font-src 'self' data: fast.fonts.net js.klevu.com fonts.googleapis.com fonts.gstatic.com use.typekit.net script.hotjar.com *.klarnacdn.net; connect-src 'self' edge.microsoft.com api.cognitive.microsofttranslator.com about: www.googletagservices.com *.googlesyndication.com *.google.com *.doubleclick.net stats.klevu.com *.vaimo.network fonts.gstatic.com fonts.googleapis.com www.gstatic.com translate.google.com translate.googleapis.com analytics.google.com ampcid.google.com stats.g.doubleclick.net www.google-analytics.com performance.typekit.net use.typekit.net *.nr-data.net connect.facebook.net *.facebook.com www.googletagmanager.com *.hotjar.io *.hotjar.com wss://*.hotjar.com forms.hsforms.com js.hs-scripts.com js.hs-analytics.net js.hsadspixel.net js.hubspotfeedback.com js.hs-banner.com js.hsleadflows.net js.usemessages.com api.hubapi.com *.hubspot.com *.bing.com wss://*.bing.com code.jquery.com *.klarnauserservices.com www.paypalobjects.com *.paypal.com *.klarnaevt.com *.trustpilot.com *.klarnaservices.com *.pingdom.net *.snapchat.com *.ksearchnet.com; manifest-src 'self'; base-uri 'self'; form-action 'self' *.vipps.no *.google.com connect.facebook.net *.facebook.com forms.hubspot.com forms.hsforms.com *.snapchat.com *.xn--verkty-fya.no; media-src 'self' data: *.gstatic.com dai.google.com hikoki-powertools.no; prefetch-src 'self' *.googlesyndication.com; worker-src 'self' blob: www.google.com; report-uri https://gate.rapidsec.net/g/r/csp/d45506e8-e36e-4049-bd8d-671e70be0ba8/0/7/3?sdkv=-1.-1.-1_unknown&sct=0f6184a8-edd6-41c5-aa7b-4b552fad73df&dpos=enforce;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
x-real-server: Docker
x-ua-compatible: IE=edge
x-frame-options: SAMEORIGIN
pragma: no-cache
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 6e1fbd725cd79070-FRA
|