| pointsafes.com/?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= | 54.76.124.8 | | 296 B |
URL pointsafes.com/?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= IP54.76.124.8:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcb5a27d49fc0b8791965db330d3e84f1 812795ee9c2b52b1af4ee5523bab02c4e77268ba 5aaec7e4bbc21875adb9ac8b0f10a2fe288bd488048deb9c6373b745045597dd
GET /?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= HTTP/1.1
Host: pointsafes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 296
Content-Type: text/html; charset=utf-8
Date: Fri, 10 May 2024 13:45:59 GMT
Location: https://orangeboring.com/?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=5664e255-0745-466c-86e0-cae97871f723
Connection: close
|
|
| orangeboring.com/?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=5664e255-0745-466c-86e0-cae97871f723 | 52.17.175.109 | 302 Found | 285 B |
URL User Request GET HTTP/1.1orangeboring.com/?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=5664e255-0745-466c-86e0-cae97871f723 IP52.17.175.109:443
CertificateIssuerGlobalSign nv-sa Subject*.orangeboring.com FingerprintC4:DD:8A:D3:E4:FC:F3:66:C3:61:34:DA:91:D1:B5:3D:3D:4A:34:B6 ValidityFri, 16 Feb 2024 14:25:13 GMT - Wed, 19 Mar 2025 14:25:12 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hasha7b74694e66fda2546e6d0ae27103d3b 885132e11bdbf3e11120346409a269e1402e52e7 508086f90084a4eb0c9f5f7df86f63b5fa5be223d40690053adf01afdd24e656
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?a=8924&c=68441&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=5664e255-0745-466c-86e0-cae97871f723 HTTP/1.1
Host: orangeboring.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 285
Content-Type: text/html; charset=utf-8
Date: Fri, 10 May 2024 13:45:59 GMT
Location: https://silence.whisperinggalaxy.com/5c91666d-4820-4efa-844c-1f0c5fa7a01d?s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&aid=8924
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=2urWG9jyorBlhnWjU4Jnlc9wkM1MuybioV8AZnWZSlaCsIpvm0Zz7A==; domain=.orangeboring.com; path=/; HttpOnly
trk=Fb3xI9K+Itz/W9cOBOI+vs9wkM1MuybioV8AZnWZSlaCsIpvm0Zz7A==; domain=.orangeboring.com; expires=Sun, 10-May-2026 13:45:59 GMT; path=/; HttpOnly
c4615=2urWG9jyorAeS8av59vj3F166glTJWZg4UOSSfJTLS2aL+06iI5mPg==; domain=.orangeboring.com; expires=Sun, 09-Jun-2024 13:45:59 GMT; path=/; HttpOnly
Connection: close
|
|
| silence.whisperinggalaxy.com/5c91666d-4820-4efa-844c-1f0c5fa7a01d?s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&aid=8924 | 3.126.25.249 | 302 Found | 0 B |
URL User Request GET HTTP/2silence.whisperinggalaxy.com/5c91666d-4820-4efa-844c-1f0c5fa7a01d?s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&aid=8924 IP3.126.25.249:443
CertificateIssuerLet's Encrypt Subjectsilence.whisperinggalaxy.com Fingerprint8C:B2:98:89:4B:A0:CE:F8:EB:6F:23:87:38:8D:62:8F:1C:9D:93:70 ValidityThu, 28 Mar 2024 06:46:54 GMT - Wed, 26 Jun 2024 06:46:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /5c91666d-4820-4efa-844c-1f0c5fa7a01d?s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&aid=8924 HTTP/1.1
Host: silence.whisperinggalaxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 13:45:59 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://pointsafes.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=
pragma: no-cache
set-cookie: 5c91666d-4820-4efa-844c-1f0c5fa7a01d-v4=YUSkYzWjykWtl31YYl8VlUnp7A9-N6ketCkgHT6pTII; Max-Age=86400; Expires=Sat, 11-May-2024 13:45:59 GMT; Domain=silence.whisperinggalaxy.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=GQcGNNZbpzKKeEHBdsh6sJis9OUE7KHAFXLYFI7c4xX9cKzPbdX%2FiaRxrmrq%2FZgIO7KuyxOaPEFr5Pn1uPMNWZ11zwrVgToFn9J59MiQnKES9zpGerIMoRfMGn5MiPb49BGpQje1inmHR0tmVYCGSQ%3D%3D; Max-Age=31536000; Expires=Sat, 10-May-2025 13:45:59 GMT; Domain=silence.whisperinggalaxy.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| pointsafes.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= | 54.76.124.8 | 302 Found | 298 B |
URL User Request GET HTTP/1.1pointsafes.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= IP54.76.124.8:443
CertificateIssuerGlobalSign nv-sa Subject*.pointsafes.com Fingerprint26:1E:3C:C6:FB:77:02:9E:88:DC:DA:D2:87:B6:17:E9:16:17:E3:E6 ValiditySat, 06 Jan 2024 05:32:22 GMT - Thu, 06 Feb 2025 05:32:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash7e945de5e31807916b1416082e3d3494 9ecc090f9073994fead9d6d633d113214d6f4f14 2e4e2fd25e823eb01e40dec0be6b1bb8301174f5a2c6f092e6bca9047217283d
GET /?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5= HTTP/1.1
Host: pointsafes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 298
Content-Type: text/html; charset=utf-8
Date: Fri, 10 May 2024 13:45:59 GMT
Location: https://greenplacetech.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=ba66337d-40ca-4968-8e8e-beecbf77ae3d
Connection: close
|
|
| greenplacetech.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=ba66337d-40ca-4968-8e8e-beecbf77ae3d | 52.17.175.109 | 302 Found | 206 B |
URL User Request GET HTTP/1.1greenplacetech.com/?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=ba66337d-40ca-4968-8e8e-beecbf77ae3d IP52.17.175.109:443
CertificateIssuerGlobalSign nv-sa Subject*.greenplacetech.com FingerprintEC:78:93:54:B7:CE:3D:4D:5A:EB:EB:35:26:5A:88:73:CA:63:4A:32 ValiditySat, 06 Jan 2024 05:26:03 GMT - Thu, 06 Feb 2025 05:26:02 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3efa12dbbbf2a9e3b6f6cb80b566c0b4 ac6eb8cf83ee48e5b5aa6a8cc447661b673ba9ad ef3ac1cf97bb9761268065ada921d44b184bf84daac408cc33b395c88f6524d5
GET /?a=8924&c=37988&s1=117&s2=a5697262331620283a0fdd5855f1ad27-48215-0510&s3=&s4=&s5=&ckmguid=ba66337d-40ca-4968-8e8e-beecbf77ae3d HTTP/1.1
Host: greenplacetech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 206
Content-Type: text/html; charset=utf-8
Date: Fri, 10 May 2024 13:46:00 GMT
Location: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=2urWG9jyorBGnw2A9L0g289wkM1Muybi/VuL5g1ve+UYjzwgClT2FA==; domain=.greenplacetech.com; path=/; HttpOnly
trk=vyzv6Up3tUJXMJV0cuAH/c9wkM1Muybi/VuL5g1ve+UYjzwgClT2FA==; domain=.greenplacetech.com; expires=Sun, 10-May-2026 13:46:00 GMT; path=/; HttpOnly
c4396=2urWG9jyorAPnCuTIu7yZRZ2b6F5DQ1ZEu/01rypc26aL+06iI5mPg==; domain=.greenplacetech.com; expires=Fri, 10-May-2024 13:46:00 GMT; path=/; HttpOnly
Connection: close
|
|
| www.rasketreff.com/img/logo.png | 34.160.156.109 | 200 OK | 18 kB |
URL GET HTTP/2www.rasketreff.com/img/logo.png IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typePNG image data, 300 x 110, 8-bit/color RGBA, non-interlaced Hash2561568c29292e10ae4a30cddfd7f3b5 7c3f21096bb299db4a0526d45953be5babf0ae87 589180af5399a496e5c66a64d118732f2944f377a2d5581727a6d68671367159
GET /img/logo.png HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:00 GMT
server: Apache/2.4.58 (Ubuntu)
vary: X-Forwarded-Proto
last-modified: Mon, 06 May 2024 09:22:29 GMT
etag: "4833-617c59bc41195"
accept-ranges: bytes
content-length: 18483
x-ua-compatible: IE=edge,chrome=1
content-type: image/png
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/js/ad-provider.js | 34.160.156.109 | 200 OK | 512 B |
URL GET HTTP/2www.rasketreff.com/landers/js/ad-provider.js IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeASCII text, with very long lines (979) Hashacd920e8f5657057e8003b79905c5266 cd96548060dbbc3f715cb81c3810d893eedec260 38b34bce7e5ad8268f51a16a6633c17923130b2fac9eeb6ceaca6beb50990681
GET /landers/js/ad-provider.js HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:00 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: "663b54e4-3fb-gzip"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 36106304
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 512
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/images/loader/loading.gif | 34.160.156.109 | 200 OK | 2.9 kB |
URL GET HTTP/2www.rasketreff.com/landers/images/loader/loading.gif IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeGIF image data, version 89a, 128 x 15 Hash62b08454087f1ef8b27bd2bcda330537 cac1914632f4c859f6176a84078f1017bad069f8 06f91f1bc360e7c486515b416a564445652e40585f94f2d089239b981d6421f6
GET /landers/images/loader/loading.gif HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:39:06 GMT
server: nginx/1.14.2
content-type: image/gif
content-length: 2892
last-modified: Wed, 08 May 2024 10:32:56 GMT
etag: "663b54d8-b4c"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 19391115 19956077
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/css/vegas.min.css | 34.160.156.109 | 200 OK | 6.9 kB |
URL GET HTTP/2www.rasketreff.com/landers/css/vegas.min.css IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typegzip compressed data, from Unix Hashdebb277252f35795c13f41bce52c6f44 818d29e5fc4e4b4a9820c67d5ee9f9c950d47341 c54435f0eb502bb9786810da93acd8031d212be398fb1659d0c80a6cc4bc42ba
GET /landers/css/vegas.min.css HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:00 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Wed, 08 May 2024 10:32:54 GMT
etag: W/"663b54d6-2e20"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 35935391
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/favicon/apple-touch-icon-180x180.png | 34.160.156.109 | 404 Not Found | 280 B |
URL GET HTTP/3www.rasketreff.com/favicon/apple-touch-icon-180x180.png IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeHTML document, ASCII text Hashe64e26888de2a6465d3e1ad55dbd8e62 92cd0da7b38fb8c0ee29669c3981ab43b9877a1f b9889246448692218d8ba5541945f9d4cc8db973f5f4b9b4ab203eb81ab79d62
GET /favicon/apple-touch-icon-180x180.png HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 13:46:01 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.rasketreff.com/favicon/favicon.ico | 34.160.156.109 | 404 Not Found | 280 B |
URL GET HTTP/3www.rasketreff.com/favicon/favicon.ico IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeHTML document, ASCII text Hashe64e26888de2a6465d3e1ad55dbd8e62 92cd0da7b38fb8c0ee29669c3981ab43b9877a1f b9889246448692218d8ba5541945f9d4cc8db973f5f4b9b4ab203eb81ab79d62
GET /favicon/favicon.ico HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 13:46:01 GMT
server: Apache/2.4.58 (Ubuntu)
content-length: 280
content-type: text/html; charset=iso-8859-1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.99 | 200 OK | 204 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:27:37 GMT
expires: Tue, 06 May 2025 16:27:37 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 335904
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/media-registry.js | 34.160.156.109 | 200 OK | 8.8 kB |
URL GET HTTP/3www.rasketreff.com/landers/media-registry.js IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash7db515478934022835aa54960924e1e9 108c8d1fcf00efbc2fb81cb7ac12563ac1dcc370 12d97cd754643b6f1554ffa21d1c569554fcb17eb9477724ffff5288137b8c30
GET /landers/media-registry.js HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:07:15 GMT
server: nginx/1.14.2
x-goog-generation: 1715166708679572
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 122245
x-goog-hash: crc32c=3xOWCg==, md5=fbUVR4k0Aig1qlSWCSTh6Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPpUNLCvIk76sdaG4aXdNujiDUlE4zaxZBmvYw12eEXqT3dT76-Da4EU5PFpw-3P_Uu4m7893ngdgQ
age: 2326
last-modified: Wed, 08 May 2024 11:11:48 GMT
etag: "7db515478934022835aa54960924e1e9-gzip"
content-type: application/javascript
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
vary: Accept-Encoding
content-encoding: gzip
content-length: 8780
via: 1.1 google, 1.1 google
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.99 | 200 OK | 204 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:27:37 GMT
expires: Tue, 06 May 2025 16:27:37 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 335904
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/css/fontawesome-all.min.css | 34.160.156.109 | 200 OK | 229 kB |
URL GET HTTP/2www.rasketreff.com/landers/css/fontawesome-all.min.css IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typegzip compressed data, from Unix Size229 kB (228714 bytes) Hash750695f992c513ead9ed50d1e091bcf1 89665aacead83d23bd044380cf4e2d05405a2156 e8fca5ffe7a98abb718a36137c1024fe9e3060dd4c7d73cf75ee132c8aa2f634
GET /landers/css/fontawesome-all.min.css HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:00 GMT
server: nginx/1.14.2
content-type: text/css
last-modified: Wed, 08 May 2024 10:32:54 GMT
etag: W/"663b54d6-c970"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 19261208
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| samlesamtykke.com/cc.js?wId=3OyELzKwTlaIQ30ABrpKOA&domain=rasketreff.com&languageCode=nb&languageTerritory=NO&sessionId=1c875fc85ccf4df18291e9c5e39f2831 | 35.195.163.35 | 200 OK | 14 kB |
URL GET HTTP/2samlesamtykke.com/cc.js?wId=3OyELzKwTlaIQ30ABrpKOA&domain=rasketreff.com&languageCode=nb&languageTerritory=NO&sessionId=1c875fc85ccf4df18291e9c5e39f2831 IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
File typeJavaScript source, ASCII text Hashe649fc2ffbbc83fef88f2aee3dd77f32 c4efb7ee293745b2327bb29ba61bf4037eba3201 1057729378889439e1615cc275af370068eaf6b2c1b4038a89d0c42fcc701233
GET /cc.js?wId=3OyELzKwTlaIQ30ABrpKOA&domain=rasketreff.com&languageCode=nb&languageTerritory=NO&sessionId=1c875fc85ccf4df18291e9c5e39f2831 HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:01 GMT
content-type: application/javascript
content-length: 14211
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css | 142.250.74.99 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 17:09:08 GMT
expires: Tue, 06 May 2025 17:09:08 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 333413
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.99 | 200 OK | 204 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:27:37 GMT
expires: Tue, 06 May 2025 16:27:37 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 335904
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB | 142.250.74.168 | | 73 kB |
URL www.googletagmanager.com/gtm.js?id=GTM-KBRH6NB IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (3484) Hash204dedd036f0be27c726744274b8bec7 5db01fe68287ca615b398895203812447212295a d75cd1af9f555713f3cc67c655ee055009572978cb2e6fcc1936465c731f95ac
GET /gtm.js?id=GTM-KBRH6NB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 13:46:02 GMT
expires: Fri, 10 May 2024 13:46:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73325
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/images/landing064/default/default/slide07.jpg?geo=no | 34.160.156.109 | | 73 kB |
URL www.rasketreff.com/landers/images/landing064/default/default/slide07.jpg?geo=no IP34.160.156.109:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3 Hash92c81a359e5a5ed1c813afde561a7891 50e7c7b06da6c3fc745ed75c1db64a1db065d4de be7ae60eade4925df1221f8fcf600ff72a9422a76f768cf32da6075431858eaf
GET /landers/images/landing064/default/default/slide07.jpg?geo=no HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:46:01 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 72880
last-modified: Wed, 08 May 2024 10:32:55 GMT
etag: "663b54d7-11cb0"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 10068721
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 594898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js | 142.250.74.99 | 200 OK | 204 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (632) Size204 kB (204445 bytes) Hashadd520996e437bff5d081315da187fbf 2e489fe16f3712bf36df00b03a8a5af8fa8d4b42 922b951591d52d44aa7015ebc95cab08192aa435b64f9016673ac5da1124a8b4
GET /recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 204445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 16:27:37 GMT
expires: Tue, 06 May 2025 16:27:37 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 05 May 2024 20:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 335905
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:50:52 GMT
expires: Fri, 09 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
age: 129310
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.99 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/vjbW55W42X033PfTdVf6Ft4q/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 00:37:29 GMT
expires: Fri, 17 May 2024 00:37:29 GMT
cache-control: public, max-age=604800
age: 47313
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17542) Hash7c111ad0cbb18935696bc8bb0846ec26 a9c77f0678ff71a4032e787999ada733e7da10cf 120846a7bd9fdcbff2f47564e0d9fc564fc100c581f5f1881333f70f3bd00d6f
GET /js/bg/EghGp72f3L_y9HVk4Nn8Vk_BAMWB9fGIEzP3DzvQDW8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7438
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:06:37 GMT
expires: Sat, 10 May 2025 01:06:37 GMT
cache-control: public, max-age=31536000
age: 45565
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hashe2814ec47a298a231d62dbbf5460b1d2 2c5ddca5f8f84eb09fb3ea65383033477b33268b d1d467a72a9e9bc5d8c3acfdbedc3c6188c4ae15c5b7be80e75bdcbb43839c45
GET /gtag/js?id=G-QXFHHE16V3&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 13:46:02 GMT
expires: Fri, 10 May 2024 13:46:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96211
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| samlesamtykke.com/cc.css | 35.195.163.35 | 200 OK | 3.9 kB |
IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
File typeassembler source, ASCII text Hashddb6776d9e0b9844c9f57355d7492805 da918eb4fefa9d625e5858496c2c4a20ad893619 9ec88cf72960048a40791a943e5dee85f910c00e9a3732339888b075de11bc34
GET /cc.css HTTP/1.1
Host: samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:02 GMT
content-type: text/css
content-length: 3892
last-modified: Thu, 15 Oct 2020 08:07:25 GMT
etag: "6073-5b1b123761e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/collector | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/collector IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rasketreff.com/
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:02 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/collector | 35.195.163.35 | 200 OK | 4.7 kB |
URL POST HTTP/2api.samlesamtykke.com/consent/collector IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hash927061c0a55cdb0e65f99f98227b658f 883ee9920ec104f22d62f9a15a1a9e0b3f2406be b67b9f518907270e79e5453f09e93bee35187c32d494115312a231c2a5ed458e
POST /consent/collector HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:02 GMT
content-type: application/vnd.api+json
content-length: 4654
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rasketreff.com/
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:02 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 371 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashaad76f926b6c219e918916e6f25e4129 4823643373db875486f8ac895ea532106e6798d4 0b9d369937e417796e17001b773fd61884a8993ea967ad4841a472e83f83292d
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 224
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:02 GMT
content-type: application/vnd.api+json
content-length: 371
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 0 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rasketreff.com/
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:03 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/loadSegment | 35.195.163.35 | 200 OK | 354 B |
URL POST HTTP/2api.samlesamtykke.com/consent/loadSegment IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashf3306f051731bcce1d98a030b8a2d9cf ada4a5bb07ee1872a579a651298774329b036f43 cbbae4d9daeed7c435cb09233298534b86c9c159ff6960ace74e223e460a75c5
POST /consent/loadSegment HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 225
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:03 GMT
content-type: application/vnd.api+json
content-length: 354
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rasketreff.com/
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:03 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| api.samlesamtykke.com/consent/confirmExplicit | 35.195.163.35 | 200 OK | 0 B |
URL OPTIONS HTTP/2api.samlesamtykke.com/consent/confirmExplicit IP35.195.163.35:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerLet's Encrypt Subjectsamlesamtykke.com FingerprintBC:52:E4:6C:A2:17:85:C6:FD:90:28:C0:D4:FD:54:2C:22:B2:16:C4 ValiditySat, 27 Apr 2024 20:10:54 GMT - Fri, 26 Jul 2024 20:10:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /consent/confirmExplicit HTTP/1.1
Host: api.samlesamtykke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 511
Origin: https://www.rasketreff.com
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Fri, 10 May 2024 13:46:03 GMT
content-type: application/vnd.api+json
content-length: 0
access-control-allow-origin: https://www.rasketreff.com
access-control-allow-credentials: true
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/images/landing064/default/default/slide09.jpg?geo=no | 34.160.156.109 | | 105 kB |
URL www.rasketreff.com/landers/images/landing064/default/default/slide09.jpg?geo=no IP34.160.156.109:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3 Size105 kB (105354 bytes) Hashb3a850f3f2cff6fb6bf2ebbdc743a0f2 96d42e63d3196b3749e98817237ba226d63950f0 9039dd122fd8e9e78a50e7e0c7017612d49a202b5ea0848e54af74cbe88c2734
GET /landers/images/landing064/default/default/slide09.jpg?geo=no HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1715348762.1.0.1715348762.0.0.0; _ga=GA1.1.1828820693.1715348763
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:46:07 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 105354
last-modified: Wed, 08 May 2024 10:32:55 GMT
etag: "663b54d7-19b8a"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 10454510
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.rasketreff.com/landers/js/landing064.js | 34.160.156.109 | | 104 kB |
URL www.rasketreff.com/landers/js/landing064.js IP34.160.156.109:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typegzip compressed data, from Unix Size104 kB (103460 bytes) Hashbe9929636051707d49d9d0deba149688 72edd39614ad9ad9d42c768a9edbf321adbefb4b dbe5404a5b439ab898d29a7758ca7397e73eb100382a31bcbf0202bf46413dcf
GET /landers/js/landing064.js HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 13:46:01 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: W/"663b54e4-11ee5"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 19738454
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s | 142.250.74.164 | 200 OK | 1.0 kB |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s IP142.250.74.164:443
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeJavaScript source, ASCII text, with very long lines (1033), with no line terminators Hashb77df2f1d2f5822632efd1187e962ece 960421a4e130673300eb906ba385ad28693bc933 19a99d3cfb42f9556049076efe883b802b672e42ec3f1e5ee5d22125294416ae
GET /recaptcha/enterprise.js?render=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 13:46:01 GMT
date: Fri, 10 May 2024 13:46:01 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 | 142.250.74.164 | 200 OK | 46 kB |
URL GET HTTP/3www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 IP142.250.74.164:443
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (37479) Hash4af1f880065da45c3ac7ff17c62497f7 14107c9cc3d073e19133a8dfa58c4085b5d294e0 17108d5f624edd1f2b4c47caec9f32332768d82d8b34ba72a82b5ea83b1cd9a3
GET /recaptcha/enterprise/anchor?ar=1&k=6Lc2aYkcAAAAANp1JsXLqbWbhNIDzi_7RBy95c-s&co=aHR0cHM6Ly93d3cucmFza2V0cmVmZi5jb206NDQz&hl=en&v=vjbW55W42X033PfTdVf6Ft4q&size=invisible&cb=3vuhat6zh5c4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 10 May 2024 13:46:01 GMT
content-security-policy: script-src 'nonce-V3dcQ5epAwkaqPqH1c11Rw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.rasketreff.com/landers/css/landing064.css | 34.160.156.109 | 200 OK | 22 kB |
URL GET HTTP/2www.rasketreff.com/landers/css/landing064.css IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
Hash16bde86d37844fd1543d167f199f76e3 346ea01f75a240fd532aacb557d09b5beaa22a2f f9d3a44ab1b1c1f672cee00707864c2233161b5a0df9a0ea62aab4de4c5a9eb5
GET /landers/css/landing064.css HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:01 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: rasketreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 19547721
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/enterprise.js | 142.250.74.164 | 200 OK | 940 B |
URL GET HTTP/2www.google.com/recaptcha/enterprise.js IP142.250.74.164:443
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeJavaScript source, ASCII text, with very long lines (940), with no line terminators Hash6e6255329de4c7b45588ebf1e1b0e7d2 f039287b884757624c8d9a633c9760a4597b43c1 7d2cfb7aff395543ce88b364bdf43017ab4fc6f827268b49739f9e3a1a1af447
GET /recaptcha/enterprise.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rasketreff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 10 May 2024 13:46:00 GMT
date: Fri, 10 May 2024 13:46:00 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landers/images/landing064/default/default/slide08.jpg?geo=no | 34.160.156.109 | 200 OK | 84 kB |
URL GET HTTP/3www.rasketreff.com/landers/images/landing064/default/default/slide08.jpg?geo=no IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3 Hash2b70f61fff1c49f5c668fc5ab7e6033c 6843d9cd3ee426f822cdd0b985808f690d8aca0d b08182797320e2713957deaaf568f27cf45f64d705e7290391147ee4194c9e66
GET /landers/images/landing064/default/default/slide08.jpg?geo=no HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Cookie: _ga_QXFHHE16V3=GS1.1.1715348762.1.0.1715348762.0.0.0; _ga=GA1.1.1828820693.1715348763
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 13:46:12 GMT
server: nginx/1.14.2
content-type: image/jpeg
content-length: 83719
last-modified: Wed, 08 May 2024 10:32:55 GMT
etag: "663b54d7-14707"
x-cacheable: YES
cache-control: max-age=300
xkey: lander
x-varnish: 19234163
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.rasketreff.com/landers/js/vendor.js | 34.160.156.109 | 200 OK | 124 kB |
URL GET HTTP/3www.rasketreff.com/landers/js/vendor.js IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
Size124 kB (123566 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landers/js/vendor.js HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 13:28:17 GMT
server: nginx/1.14.2
content-type: application/javascript
last-modified: Wed, 08 May 2024 10:33:08 GMT
etag: W/"663b54e4-1e2ae"
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 19707290 19258263
age: 0
x-cache: HIT
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
|
|
| www.rasketreff.com/landers/translations/nb-no2.json | 34.160.156.109 | 200 OK | 218 kB |
URL GET HTTP/3www.rasketreff.com/landers/translations/nb-no2.json IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
Size218 kB (218064 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /landers/translations/nb-no2.json HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 12:49:09 GMT
server: nginx/1.14.2
content-length: 218064
x-goog-generation: 1712825875375555
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 218064
x-goog-hash: crc32c=ezkWSA==, md5=A7WoZgnltUpU8tSqnE3mvg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPrg9wgqkdOIFzyxYRuF_FRpbdC9vlCUF5VRYHjeUj6KxJq06tP8wb7JS0Py5UZjrXkm3xY
age: 3412
last-modified: Thu, 11 Apr 2024 08:57:55 GMT
etag: "03b5a86609e5b54a54f2d4aa9c4de6be"
content-type: application/json
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 google, 1.1 google
|
|
| www.rasketreff.com/landers/css/theme/pornhub.css | 34.160.156.109 | 200 OK | 16 kB |
URL GET HTTP/2www.rasketreff.com/landers/css/theme/pornhub.css IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
Hash6e1d1ccdd93c17669867efd8a90803ab e3da5682279f1346ab29baa5303c91611aecf183 2543e77a252ce7caf9fa71dd9642f0a7c17fa1ed2a15962c97a19c24aaff727b
GET /landers/css/theme/pornhub.css HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:01 GMT
server: nginx/1.14.2
content-type: text/css;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: rasketreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 9914134
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|
| www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 | 34.160.156.109 | 200 OK | 24 kB |
URL User Request GET HTTP/2www.rasketreff.com/landing64?cat=default&pi=8924&pt1=125030782&pe=117 IP34.160.156.109:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerGoogle Trust Services LLC Subjectrasketreff.com FingerprintDB:C0:4E:A3:11:D5:CD:F5:5F:7F:81:D0:72:36:AE:29:8C:D0:36:2C ValidityThu, 04 Apr 2024 23:03:00 GMT - Wed, 03 Jul 2024 23:57:14 GMT
File typeHTML document, ASCII text, with very long lines (2091) Hasha838b5bdb900e692040356930e2eaf0d c3f6221467eaac10e83d199ab2c37d37d2a5f4d7 4c054939bb57c17ed7dd6d127def2f4f3dda93a837a223c2d074a60b2d3cbbd0
GET /landing64?cat=default&pi=8924&pt1=125030782&pe=117 HTTP/1.1
Host: www.rasketreff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:46:00 GMT
server: nginx/1.14.2
content-type: text/html;charset=UTF-8
x-powered-by: PHP/7.2.34
x-host: rasketreff.com
content-encoding: gzip
x-cacheable: YES
cache-control: max-age=300
xkey: lander
vary: Accept-Encoding
x-varnish: 9914129
age: 0
x-cache: MISS
accept-ranges: bytes
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
via: 1.1 varnish (Varnish/6.0), 1.1 google, 1.1 google
X-Firefox-Spdy: h2
|
|