| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ | 104.21.57.158 | 200 OK | 16 kB |
URL User Request GET HTTP/2nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ IP104.21.57.158:443
CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (3561) Hashfd53e23eb20f2b64dbc652432f98df30 d1857fe1aaac72e851085bf50623637df778d83d 5ddca437b1146fd8f0e7aac22f06fdae90d30701aeb7448b96f2f29f8965062b
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code | urlquery | suspicious | Suspicious - Anti-debugging code |
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/ HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=UTF-8
edge-cache-engine: varnish
edge-request-id: beceb4e5d60bf3f587c1b68398576665
vary: Accept-Encoding
edge-cache-engine-mode: ACTIVE
age: 4
x-request-id: beceb4e5d60bf3f587c1b68398576665
edge-cache-engine-hit: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J4yBXcn4wTschqnnOgG4EbglTLD7Y40L%2FU3CNPfAVF%2FJJao7Zu1RWInYr4iIZXRpMMFisR6E7Tj4SoVjumJo1tEdZyx%2FrFMHCnXwd7Q46uo3jYZNKIxLsFgO8SpYfmvH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619becb256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg | 104.21.57.158 | 403 Forbidden | 2.8 kB |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text Hashfa172c77abd7b03605d83cd1ae373657 9785fb3254695c25c621eb4cd81cf7a2a3c8258f b0c7e6712ecbf97a1e3a14f19e3aed5dbd6553f21a2852565bfc5518925713db
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 2937ff9f75f5d8cf5bf60b9c788efb37
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zK0h2pgh1K1laBEop2785qaxTAn9huIpLgU7BFVVlKViDPPBHsmzOCH3ZNTSKMhwbzq2TfZzoTPU9bqMt4jKN4rMp3VaNvV%2FeDzcN4CW3axHh5k%2FG0DuxHqEZhCDbZY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d5987b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: d5c273c8e8da41619a68a80cc2ac3bf4
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=guHUsAl6P9kUbnhsLuh0rAdUZI%2BEXYJ0Sgavc6SYFfQxqTQP4WyN8pBzTq9iE8m3US9jI8aKjUpBeYfbcp1uObysxsx9Rj7y3Z%2BZWfpvrn0SAlNjfpU8A1it7%2FaLrX3G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d4981b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 9061e1f61036840d38cba5c20d92a290
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tACVndT%2FikTyX0Le5NjeYO872c5pyapM4h3QZg9cf71PV6mKwfWM7%2F1e4H4r4wSjBzW4g0xyONGkDKjg56ZGfWGWm4wx0e0fYdkBk58QgaSLCPO9FmevNOM8vJDDaQ5v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d5991b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 9248f51a3415c2bcdfdaaff5e3fd3c44
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BBMjbjOohLRE2Xyn2wuYBXByYuxMNBt0WhzVZ0VycOhpiX78c1kEmtmY29RfADHKhuU9dmGCq9hMicWykaQxREVsxMrm986Fbifj%2BZqRvUAWLW3p2FcCtrr5KVCvlQGJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d5992b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/favicon.ico | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/favicon.ico IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/favicon.ico HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 08851be12a36a97d06c44493799e9bf8
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0lXxEbllwTMatFGGFrOfmWBqv%2BvOgZ9CXl6AP8EJL5o0Qa1AdQLYx22PwR6GikNaIa2rpmCI1SR3l9iXBNPaudU11N3xuOcSqqVWAoUXzCJIxF8PYD5vjOCzKJUkjxcf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619e2a6fb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/styles.css | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/styles.css IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/styles.css HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: db0954cf8d0b433260fcd41856acb72b
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y33FYsMICm%2BPNfyoUMpsTazbc2IJz14GQmT0ft6wTnsZyNDbUrJ1AYmHGDwhhL%2B2zkkkuYLr5JqIgjve%2B8vWG%2Fh3Ejq%2FYZqh9Yis%2F8hosGoHqwu7I3w19HWwcUM6pFzy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d4980b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: b99ede3c03e1b726de23a20aeebf42b4
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rSSgsW2fnKXYhbK9iWWLPNyiFYffNcJeG6lnCE%2FlZdeuOrv8MrwLFrVwijgGuj7YONBq7sGSo1r0xO20dvzsEum1w8PTLatEs25mxW2%2B9YqCK5ifr%2FLQWPwXwsC62MsU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d5985b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 48af488cb6ae32e76e2bcbb177de4d9b
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LTBygs7TywjbD3e%2BJxCl3trPzuQG5RXnnLoVyMMr3PMwCi8BwfqzCVErvt9yiOMdc8TeMwcrdB5K4thxvpYltmuA2nzHtRjppKqBuWOvPH3ZyXfkS%2BqKXp81oGFI1QRE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d598ab521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 74990167d842457ac8124d4b97c81080
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sw0C9tqPAvpmijoasVlSpYtPuwuAB3QDWIMMTCsp91Fh%2BBcCW3iJUQmslhMgRwUHiowaZgGy%2FhC3W5wnBBG1WKG1vehbj2Dc3FPOhYZHpCwvM%2FK7SIbei5a7DPdI01l2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d598db521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/jquery.min.js | 104.21.57.158 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/res/jquery.min.js IP104.21.57.158:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/ CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php/res/jquery.min.js HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 19:08:19 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: b13d240fd323a109d304e89bb87ea614
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vAok69G8evXqayBiRrNGts2gy4kz7vNq9PhpNmWt5RVyU2tqffz3sk8vd6da%2Bc1J10Xw8l1hSkfaRt8msYFV%2Be2%2FlmPQL19PPRF52ay0gl22AdyzjQIPsWdZBSLyumB3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8798619d5994b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|