| | 91.215.85.79 | 302 Found | 0 B |
URL User Request GET HTTP/2IP91.215.85.79:443
CertificateIssuerLet's Encrypt Subjectlogginnskatteetaten.com Fingerprint6C:89:C9:9B:F1:4D:C1:DD:12:43:B8:14:FD:F3:30:64:5F:D3:C5:AE ValidityThu, 18 Apr 2024 13:12:43 GMT - Wed, 17 Jul 2024 13:12:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | high | ET PHISHING Generic Credential Phish Landing Page M1 2022-10-11 |
GET / HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
set-cookie: PHPSESSID=b79b30417f8779a86df6db75b65ad415; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: https://logginnskatteetaten.com//pages
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 19 Apr 2024 10:32:06 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| | 91.215.85.79 | 302 Found | 0 B |
URL User Request GET HTTP/2IP91.215.85.79:443
CertificateIssuerLet's Encrypt Subjectlogginnskatteetaten.com Fingerprint6C:89:C9:9B:F1:4D:C1:DD:12:43:B8:14:FD:F3:30:64:5F:D3:C5:AE ValidityThu, 18 Apr 2024 13:12:43 GMT - Wed, 17 Jul 2024 13:12:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | high | ET PHISHING Generic Credential Phish Landing Page M1 2022-10-11 |
GET / HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=c98d5cc5e1b1798e7efdbd0918d1b65f; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
location: https://logginnskatteetaten.com//pages
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 19 Apr 2024 10:32:08 GMT
|
|
| logginnskatteetaten.com//pages | 91.215.85.79 | 404 Not Found | 584 B |
URL User Request GET HTTP/1.1logginnskatteetaten.com//pages IP91.215.85.79:80
File typeHTML document, ASCII text, with very long lines (564), with CRLF line terminators Hashd0f75c1ee4f115d008e69cc43b74c064 974fdb645649bd622f32fc57252d73e65da2fd3a 566d7223aabeec93a8e74e1747563f5de6a7ee30292d00d3950c1f6c6f6770c1
GET //pages HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=b79b30417f8779a86df6db75b65ad415
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 584
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:08 GMT
X-Firefox-Spdy: h2
|
|
| logginnskatteetaten.com//pages | 91.215.85.79 | 404 Not Found | 679 B |
URL User Request GET HTTP/1.1logginnskatteetaten.com//pages IP91.215.85.79:80
File typeHTML document, ASCII text, with very long lines (564), with CRLF line terminators Hashd0f75c1ee4f115d008e69cc43b74c064 974fdb645649bd622f32fc57252d73e65da2fd3a 566d7223aabeec93a8e74e1747563f5de6a7ee30292d00d3950c1f6c6f6770c1
GET //pages HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=4a4d6d25115bd81e6033ffafacca7205; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 679
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:11 GMT
|
|
| logginnskatteetaten.com//pages | 91.215.85.79 | 404 Not Found | 584 B |
URL User Request GET HTTP/1.1logginnskatteetaten.com//pages IP91.215.85.79:80
File typeHTML document, ASCII text, with very long lines (564), with CRLF line terminators Hashd0f75c1ee4f115d008e69cc43b74c064 974fdb645649bd622f32fc57252d73e65da2fd3a 566d7223aabeec93a8e74e1747563f5de6a7ee30292d00d3950c1f6c6f6770c1
GET //pages HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
set-cookie: PHPSESSID=0e3d17df3599135285622498470fd916; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 584
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:11 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| logginnskatteetaten.com/favicon.ico | 91.215.85.79 | 404 Not Found | 708 B |
URL GET HTTP/1.1logginnskatteetaten.com/favicon.ico IP91.215.85.79:80
Requested byhttp://logginnskatteetaten.com//pages
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash2382378378c002d88b9a507c712c3349 2e894db3808b554abadc8b144338ad9e2ea937ba 37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /favicon.ico HTTP/1.1
Host: logginnskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://logginnskatteetaten.com//pages
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Fri, 19 Apr 2024 10:32:11 GMT
|
|
| fonts.googleapis.com/css?family=Raleway:100,600 | 142.250.74.106 | 200 OK | 49 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Raleway:100,600 IP142.250.74.106:443
Requested byhttp://logginnskatteetaten.com//pages CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash1f9f55571c9faf9531ea165e2f1bed98 6829c06b74159a35e36536adafaf20f3596d07e6 6e6f82aef2e10943968861b948e7642c0bcea4c2b06f02eefaf0efffa510e94e
GET /css?family=Raleway:100,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://logginnskatteetaten.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 10:32:11 GMT
date: Fri, 19 Apr 2024 10:32:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP142.250.74.163:443
Requested byhttp://logginnskatteetaten.com//pages CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://logginnskatteetaten.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:41:26 GMT
expires: Fri, 18 Apr 2025 02:41:26 GMT
cache-control: public, max-age=31536000
age: 114645
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|