| infofraskatteetaten.com/pages | 91.215.85.79 | 200 OK | 12 kB |
URL User Request GET HTTP/2infofraskatteetaten.com/pages IP91.215.85.79:443
CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4691), with CRLF line terminators Hash91a3cf733f9ec842c43dd64407b94642 fc1ffba2797e1894098cd94952c92e52b70d781e 186a6462128c2602fc2562a999a32ffe01a0bb37349d7774574adcba4df9f8ed
Analyzer | Verdict | Alert | OpenPhish | phishing | BankID | Quad9 DNS | malicious | Sinkholed |
GET /pages HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
set-cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 11839
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 17:16:34 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| infofraskatteetaten.com/front_end/front_end_files/oidc-client.min.css?1.1.0-7+274bc17a | 91.215.85.79 | 200 OK | 8.7 kB |
URL GET HTTP/3infofraskatteetaten.com/front_end/front_end_files/oidc-client.min.css?1.1.0-7+274bc17a IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeASCII text, with very long lines (25612) Hash9ab9afb2ab228864b203b76d663e950c bafd054822b5d967958245019bfd771662c9b856 0f701714eca75339b36fb25a551ab035e6ac88cbf1854fa3c5e4c794d43a3fb7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /front_end/front_end_files/oidc-client.min.css?1.1.0-7+274bc17a HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 26 Apr 2024 17:16:35 GMT
content-type: text/css
last-modified: Fri, 12 Apr 2024 16:19:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8694
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/js/cntdjs/jquery.js | 91.215.85.79 | 200 OK | 30 kB |
URL GET HTTP/3infofraskatteetaten.com/js/cntdjs/jquery.js IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/cntdjs/jquery.js HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 12 Apr 2024 16:19:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30267
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/static/bifrost/js/oidc-client.min.js?1.1.0-7+274bc17a | 91.215.85.79 | 404 Not Found | 0 B |
URL GET HTTP/3infofraskatteetaten.com/static/bifrost/js/oidc-client.min.js?1.1.0-7+274bc17a IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/bifrost/js/oidc-client.min.js?1.1.0-7+274bc17a HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 19 Apr 2024 17:16:35 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| infofraskatteetaten.com/js/cntdjs/jquery.mask.js | 91.215.85.79 | 200 OK | 5.6 kB |
URL GET HTTP/3infofraskatteetaten.com/js/cntdjs/jquery.mask.js IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeJavaScript source, ASCII text Hash24992f1ed62baf9393609f3c6c2ad20e 34716cf70f7f7a9cd072e7796c34ce987f85d18c a199620fe981df00a825f78761d3f7c8870f8117daa4a890e08018dec386dae8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/cntdjs/jquery.mask.js HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 12 Apr 2024 16:19:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5583
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/js/cntdjs/cntd.js | 91.215.85.79 | 200 OK | 889 B |
URL GET HTTP/3infofraskatteetaten.com/js/cntdjs/cntd.js IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeJavaScript source, ASCII text Hash0eee17a675c9c575c21ca0ee6571ca2a b7c192e04cc5dd6199c7fa7f9e4f38928571e055 5b056148977cddad1d04190e8588f71549f5fbce2c8504fd0a52699a451896ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/cntdjs/cntd.js HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 12 Apr 2024 16:19:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 889
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/js/shared/loading.js | 91.215.85.79 | 200 OK | 640 B |
URL GET HTTP/3infofraskatteetaten.com/js/shared/loading.js IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeJavaScript source, ASCII text Hashf887f681e4eb3254fc34a0f2ba1f56b7 822eaf7d5d740537cdc7e5fff2bc506ade43cc7e 4bdc871a71df801aa86926434d6fbed9744ec4757af4e9d6d40978724ea59134
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/shared/loading.js HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 12 Apr 2024 16:19:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 640
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/js/shared/online_status.js | 91.215.85.79 | 200 OK | 383 B |
URL GET HTTP/3infofraskatteetaten.com/js/shared/online_status.js IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeJavaScript source, ASCII text Hashea63f1dec81ad7dd70e88f5e8d68ce2a 4caf64741cf659af90b0324d51d97a8958820afa e64e9d464beb9fe2717cd8bd8d093bb04d570f08a15c65f14533733904e12be7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/shared/online_status.js HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript
last-modified: Fri, 12 Apr 2024 16:19:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 383
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| infofraskatteetaten.com/front_end/front_end_files/bid_202201130932.css | 91.215.85.79 | 200 OK | 17 kB |
URL GET HTTP/3infofraskatteetaten.com/front_end/front_end_files/bid_202201130932.css IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashaa9322e3fbc491114c4ed15fa0f8ca10 2f8344e0b1bed57718b389442bbcd403589505fb 68865208ac1cc3b9a6a8bf2e7a8c6e95d90be33bbfd73bb9c682034199f176a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /front_end/front_end_files/bid_202201130932.css HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 26 Apr 2024 17:16:35 GMT
content-type: text/css
last-modified: Fri, 12 Apr 2024 16:19:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17413
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|
| csfe.bankid.no/jsclient21/error.js | 193.26.146.36 | 200 OK | 250 B |
URL GET HTTP/1.1csfe.bankid.no/jsclient21/error.js IP193.26.146.36:443 ASN#207674 Vipps Mobilepay As
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerGlobalSign nv-sa Subjectcsfe.bankid.no FingerprintF1:A5:DB:B2:D2:E4:13:D1:8B:1F:2E:DC:C4:11:C6:08:87:C5:DC:31 ValidityMon, 26 Feb 2024 12:10:41 GMT - Sat, 29 Mar 2025 12:10:40 GMT
File typeJavaScript source, ASCII text Hashd10d7bbcc0060267a4e9dec381cac89f 90947fa30e7e3d71bb9556f4cbd352e255df3849 c080371fd384e40ac7de4153b9a05b57a21362ce1f69d1f7ac7af1e28a6fc1e7
GET /jsclient21/error.js HTTP/1.1
Host: csfe.bankid.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 17:16:34 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ETag: W/"250-1698318222000"
Last-Modified: Thu, 26 Oct 2023 11:03:42 GMT
Content-Type: application/javascript
Content-Length: 250
Cache-Control: max-age=0
Expires: Fri, 19 Apr 2024 17:16:35 GMT
Connection: close
|
|
| csfe.bankid.no/CentralServerFEJS/b/KgAAAL2f1cP3S6QFyW7LwEavA4n4LGmaqdgvDrFPGcgpsLJmzcPc2-8XCRQP7z3h_WM6i97fpSLPKwNZOyleBjyk0RCj9p95W2s | 193.26.146.36 | 200 OK | 108 B |
URL GET HTTP/1.1csfe.bankid.no/CentralServerFEJS/b/KgAAAL2f1cP3S6QFyW7LwEavA4n4LGmaqdgvDrFPGcgpsLJmzcPc2-8XCRQP7z3h_WM6i97fpSLPKwNZOyleBjyk0RCj9p95W2s IP193.26.146.36:443 ASN#207674 Vipps Mobilepay As
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerGlobalSign nv-sa Subjectcsfe.bankid.no FingerprintF1:A5:DB:B2:D2:E4:13:D1:8B:1F:2E:DC:C4:11:C6:08:87:C5:DC:31 ValidityMon, 26 Feb 2024 12:10:41 GMT - Sat, 29 Mar 2025 12:10:40 GMT
File typeJavaScript source, ASCII text Hashb240094d3e49a84bdfdba63a40242377 5f8e7405a1533718005063a1ad47236c50e9accc a1f96af0ff80beee233dd05a75843e48337554f85d93f5c533cb42bc8045220e
GET /CentralServerFEJS/b/KgAAAL2f1cP3S6QFyW7LwEavA4n4LGmaqdgvDrFPGcgpsLJmzcPc2-8XCRQP7z3h_WM6i97fpSLPKwNZOyleBjyk0RCj9p95W2s HTTP/1.1
Host: csfe.bankid.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 17:16:35 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-control: no-cache, no-store, must-revalidate, max-age=0
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Type: application/javascript;charset=UTF-8
Content-Length: 108
Expires: Fri, 19 Apr 2024 17:16:35 GMT
Connection: close
|
|
| csfe.bankid.no/CentralServerFEJS/Gateway/helper21.js?cid=1i2oCUMt56e3Xq8F | 193.26.146.36 | 200 OK | 0 B |
URL GET HTTP/1.1csfe.bankid.no/CentralServerFEJS/Gateway/helper21.js?cid=1i2oCUMt56e3Xq8F IP193.26.146.36:443 ASN#207674 Vipps Mobilepay As
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerGlobalSign nv-sa Subjectcsfe.bankid.no FingerprintF1:A5:DB:B2:D2:E4:13:D1:8B:1F:2E:DC:C4:11:C6:08:87:C5:DC:31 ValidityMon, 26 Feb 2024 12:10:41 GMT - Sat, 29 Mar 2025 12:10:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /CentralServerFEJS/Gateway/helper21.js?cid=1i2oCUMt56e3Xq8F HTTP/1.1
Host: csfe.bankid.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 17:16:34 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 0
Connection: close
Content-Type: application/javascript
|
|
| infofraskatteetaten.com/favicon.ico | 91.215.85.79 | 404 Not Found | 708 B |
URL GET HTTP/3infofraskatteetaten.com/favicon.ico IP91.215.85.79:443
Requested byhttps://infofraskatteetaten.com/pages CertificateIssuerLet's Encrypt Subjectinfofraskatteetaten.com Fingerprint09:04:10:0A:DB:27:64:50:40:3E:4B:A6:D2:32:B8:A1:4B:83:8B:4B ValidityTue, 16 Apr 2024 15:09:56 GMT - Mon, 15 Jul 2024 15:09:55 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash2382378378c002d88b9a507c712c3349 2e894db3808b554abadc8b144338ad9e2ea937ba 37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: infofraskatteetaten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://infofraskatteetaten.com/pages
Cookie: PHPSESSID=5d09ace7c10f0a1437d84380b2644205
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Fri, 19 Apr 2024 17:16:35 GMT
|
|