Overview

URL gullboden.no/
IP164.132.160.172
ASN
Location Italy
Report completed2018-12-15 00:34:24 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-15 2 http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com/bofa/ Phishing
2018-12-15 2 http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com/bofa/ Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 164.132.160.172

Date UQ / IDS / BL URL IP
2019-04-20 20:27:10 +0200
0 - 0 - 1 hjembu.no/ 164.132.160.172
2019-04-20 20:25:57 +0200
0 - 0 - 1 gakk.no/ 164.132.160.172
2019-04-20 18:56:28 +0200
0 - 0 - 1 osloflagg.no/ 164.132.160.172
2019-04-20 18:43:14 +0200
0 - 0 - 1 skorgen-as.no/ 164.132.160.172
2019-04-20 18:35:30 +0200
0 - 0 - 1 gakk.no/ 164.132.160.172
2019-04-20 18:30:43 +0200
1 - 0 - 2 bendixen.no/ 164.132.160.172
2019-04-20 18:08:01 +0200
0 - 0 - 1 microgreen.no/ 164.132.160.172
2019-04-20 18:02:57 +0200
0 - 0 - 1 hjembu.no/ 164.132.160.172
2019-04-20 17:58:48 +0200
0 - 0 - 1 vitapharma.no/ 164.132.160.172
2019-04-20 08:56:12 +0200
0 - 0 - 1 osloflagg.no/ 164.132.160.172

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-04-20 23:18:54 +0200
0 - 0 - 1 scottbrase.com/ 159.203.100.19
2019-04-20 23:17:37 +0200
0 - 0 - 1 fantasyforeigner.com/_he_ouvre_ll_aintings_ri (...) 46.101.127.31
2019-04-20 23:16:20 +0200
0 - 0 - 1 fantasyforeigner.com/_lectrical_ngineering_at (...) 46.101.127.31
2019-04-20 23:16:19 +0200
0 - 0 - 1 fantasyforeigner.com/_amaha_hazer_epair_anual (...) 46.101.127.31
2019-04-20 23:16:19 +0200
0 - 0 - 1 fantasyforeigner.com/_mc_15_10_ervice_anual_.pdf 46.101.127.31
2019-04-20 23:15:12 +0200
0 - 0 - 1 fantasyforeigner.com/italiani_scritti.pdf 46.101.127.31
2019-04-20 23:15:03 +0200
0 - 0 - 1 fantasyforeigner.com/_aming_onic_ompounds_ork (...) 46.101.127.31
2019-04-20 23:15:02 +0200
0 - 0 - 1 fantasyforeigner.com/1989_cura_egend_irror_la (...) 46.101.127.31
2019-04-20 23:14:58 +0200
0 - 0 - 1 fantasyforeigner.com/promotion_in_the_merchan (...) 46.101.127.31
2019-04-20 23:14:57 +0200
0 - 0 - 1 fantasyforeigner.com/star_wars_workbook_1st_g (...) 46.101.127.31

Last 10 reports on domain: gullboden.no

Date UQ / IDS / BL URL IP
2019-02-20 13:26:39 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-20 06:34:43 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-19 21:34:52 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-16 21:34:20 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-16 03:34:48 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-15 18:34:56 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-14 15:34:11 +0100
0 - 0 - 3 gullboden.no/ 164.132.160.172
2018-12-14 06:33:59 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-13 21:34:13 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172
2018-12-13 12:34:02 +0100
0 - 0 - 2 gullboden.no/ 164.132.160.172


JavaScript

Executed Scripts (3)


Executed Evals (24)

#1 JavaScript::Eval (size: 2, repeated: 2) - SHA256: b7a56873cd771f2c446d369b649430b65a756ba278ff97ec81bb6f55b2e73569

                                        25
                                    

#2 JavaScript::Eval (size: 2, repeated: 2) - SHA256: d59eced1ded07f84c145592f65bdf854358e009c5cd705f5215bf18697fed103

                                        40
                                    

#3 JavaScript::Eval (size: 5, repeated: 1) - SHA256: 6f29feaa20f37d47ab4d3e80eb2777060f2acec8e84d2360c693316483965dbb

                                        p0 = p;
                                    

#4 JavaScript::Eval (size: 4, repeated: 3) - SHA256: c5fa9221943ac10468ab8ca4f8494c43f0917177715b18348b1c99caba0144a8

                                        p0i0
                                    

#5 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 38455cef9b29147928f1338dd58176ed520475a35c2156bd2803ad53efe4a58a

                                        p0i0 = it;
                                    

#6 JavaScript::Eval (size: 4, repeated: 1) - SHA256: e1ff0ddfca1735dc8c476fba1d0e13180725c87afaf1cebfea17b586138f6e7b

                                        p0i1
                                    

#7 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 643f1b51320e6d574f821ff63f3f3ce37b7336c7faf4cb0ab6af0151ed756fe5

                                        p0i1 = it;
                                    

#8 JavaScript::Eval (size: 8, repeated: 2) - SHA256: 16ecae46200e3ec09840a5707ac28231cec7ea49405308a61acf6caded1f8409

                                        p0i3 = it;
                                    

#9 JavaScript::Eval (size: 2, repeated: 1) - SHA256: f64551fcd6f07823cb87971cfb91446425da18286b3ab1ef935e0cbd7a69f68a

                                        p1
                                    

#10 JavaScript::Eval (size: 5, repeated: 1) - SHA256: 786bc659ce26ee7bea9362516f9c2b1cb117cd9daa4f7f19dd35a24f485d3410

                                        p1 = p;
                                    

#11 JavaScript::Eval (size: 4, repeated: 2) - SHA256: 740b4249ab106e4a40a11ef08c27eb14fa8d24117419b472ec05a96c2b27d406

                                        p1i0
                                    

#12 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 9272950002b0cb5f0cacd44ccd0b4f15709fed385b53894ad2eaae371a5f043a

                                        p1i0 = it;
                                    

#13 JavaScript::Eval (size: 8, repeated: 1) - SHA256: d999545480e900f843e809926247841b46f9069703c8d431940261add6cb4c2c

                                        p1i1 = it;
                                    

#14 JavaScript::Eval (size: 2, repeated: 1) - SHA256: 3946ca64ff78d93ca61090a437cbb6b3d2ca0d488f5f9ccf3059608368b27693

                                        p2
                                    

#15 JavaScript::Eval (size: 5, repeated: 1) - SHA256: 8bedd256bf2560c66137cc35d9bcdb428d3c20185922f7038f9be5c59cb3f8ca

                                        p2 = p;
                                    

#16 JavaScript::Eval (size: 4, repeated: 5) - SHA256: 2359d11736c28ea881b2e3bae841226c0c3080fae3618dddc36f87b06aed5e1b

                                        p2i0
                                    

#17 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 85f7f87217ec53bc0a96dbe2f2ecd6c23eb7c465497ff90d133ad500745f414e

                                        p2i0 = it;
                                    

#18 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 30c99a114bcf4ebb0d89c48bccfd2c56deb7efb7d82357b87eac3286c59cbb45

                                        p2i1 = it;
                                    

#19 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 5839c181425812ed91344a3352039074e9909e1c631b9bc443e0e3f2946228cf

                                        p2i2 = it;
                                    

#20 JavaScript::Eval (size: 8, repeated: 1) - SHA256: eac5c7c1272c9aac6275c28a0fd0753b651b5800df35efa615947263259b1b51

                                        p2i3 = it;
                                    

#21 JavaScript::Eval (size: 5, repeated: 1) - SHA256: 307cf9781131feb341e246bd76b039869d4e72365e1c06580eac5532fe849208

                                        p3 = p;
                                    

#22 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 6caf33ccb8ebba15ba894570d400f5fb4cd8115a39a61e7da5cd9869f31a7c85

                                        p3i0 = it;
                                    

#23 JavaScript::Eval (size: 8, repeated: 1) - SHA256: f76291b2467510f29b018b1ab968d4e29c2e98769cbf98b6eabc0babf19623df

                                        p3i1 = it;
                                    

#24 JavaScript::Eval (size: 56, repeated: 1) - SHA256: 065255f8ccb064bf8ff5fbc697cf952f8fbdd08607ea892e58da78f80a18457f

                                        var pp = st_ms[0].ps[0];
pp.tmid = null;
stnmsh(pp);
pp.exed = 1;
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 324, repeated: 1) - SHA256: 8bb19fdf9f77e39f60a70ac246004f9cece0ea8cb2b52cf923a0d2746efde01b

                                        < STYLE >
    .st_tbcss, .st_tdcss, .st_divcss, .st_ftcss {
        border: none;padding: 0 px;margin: 0 px;
    } < /STYLE><FONT ID=st_gl0></FONT > < FONT ID = st_gl1 > < /FONT><FONT ID=st_gl2></FONT > < FONT ID = st_gl3 > < /FONT><FONT ID=st_gl4></FONT > < FONT ID = st_gl5 > < /FONT><FONT ID=st_gl6></FONT > < FONT ID = st_gl7 > < /FONT><FONT ID=st_gl8></FONT > < FONT ID = st_gl9 > < /FONT>
                                    


HTTP Transactions (24)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Thu, 27 Mar 2008 06:10:56 GMT
Etag: "2ea-449650c6f7c00"
Accept-Ranges: bytes
Content-Length: 746
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   746
Md5:    fa857dc2e273476e1b44f863c8ede60f
Sha1:   f73d3d19d6626728c454cc4080f19dc5d49327fe
Sha256: 7848fb4b650b19652f240ac29563a88cf417f092450b7b8a573bcb5f66bc405a
                                        
                                            GET /frameset/header.htm HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:55:41 GMT
Etag: "826-3ecc7c8c2f940"
Accept-Ranges: bytes
Content-Length: 2086
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   2086
Md5:    b6898d156eb1192edc6b593486d40391
Sha1:   a5e284f21392b113e990493e7a719eac0c3814db
Sha256: e43d29bc916073811950e338c7e8827b05d44016949e0bb2718e17d5bb7c4d33
                                        
                                            GET /frameset/menu.html HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2011 08:21:34 GMT
Etag: "c6f-4a6348a33bf80"
Accept-Ranges: bytes
Content-Length: 3183
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text
Size:   3183
Md5:    ec4569830bf0c57c0444e379c1b60835
Sha1:   822a14de08fa09d95bbed9e2453c846e6edc9c4d
Sha256: 9358833b195da8ac20c9207e724773bc4606641132c278df8d75fc846cc3e395
                                        
                                            GET /htm/forside.htm HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2005 11:19:50 GMT
Etag: "84c-3f49f96604180"
Accept-Ranges: bytes
Content-Length: 2124
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   2124
Md5:    3e43b4cfa444a72d86dd091b37ce3c46
Sha1:   5f7b7629b4d34c0c9c096a2101feab82d334f801
Sha256: 67660e9108a0d38d6c21e2f57489e63b346b94809e9f08db8aca69b639f65575
                                        
                                            GET /frameset/footer.htm HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Thu, 28 Feb 2008 15:18:22 GMT
Etag: "4b5-447396ea72b80"
Accept-Ranges: bytes
Content-Length: 1205
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1205
Md5:    f3684e8217ade8c3e3088af3ade1cd3c
Sha1:   13ce223b692d54e475e7db16478d438c87422043
Sha256: 5b8a0cc7a76e5b1fc25e07d5acc3d440e3f0977c09d816c0cae62bfdf0ca733e
                                        
                                            GET /img/header101v6.png HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/header.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:07 GMT
Etag: "1b53-3ecc7d89dcfc0"
Accept-Ranges: bytes
Content-Length: 6995
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 501 x 101, 8-bit/color RGBA, non-interlaced
Size:   6995
Md5:    08cc08fcaca8f3d50d3f7740c6c819d0
Sha1:   9ff8fcf679f2e86e922b69bcc68a5d1718e6dbd5
Sha256: 1bf9d55109defa77840aa54629ff5ec4053557f06fe2b615f86c2e27d1082743
                                        
                                            GET /gullboden.css HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:25 GMT
Etag: "ad6-3ecc7d9b07840"
Accept-Ranges: bytes
Content-Length: 2774
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C program text
Size:   2774
Md5:    6711abbbbccde328938101ebc5f758bb
Sha1:   2f932805820187c7830f0e314207de2cd09060af
Sha256: f32fdeaa47322f6aae6b6e8bcb7667c78508a015a43747b5e51bed4ea6e8f9f6
                                        
                                            GET /img/butikk_left2.jpg HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:59:58 GMT
Etag: "1a18-3ecc7d8147b80"
Accept-Ranges: bytes
Content-Length: 6680
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   6680
Md5:    5bf211ffd3a93513d9c3e3d3d541fd97
Sha1:   545bca4058ee9f3e63c602b3f2ef8742203c24d2
Sha256: 0d71b6bdf331f93e9c698d447ce369d9bb296f9e0a2753e2b28b1ddb198e5e44
                                        
                                            GET /globalcss.css HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/htm/forside.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:23 GMT
Etag: "71c-3ecc7d991f3c0"
Accept-Ranges: bytes
Content-Length: 1820
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1820
Md5:    274a7872506443f60f387cd285c78c4f
Sha1:   d0c6c91829469354c6c7877a0b372d7745d9c192
Sha256: 8342ac9e1db9455c2f00616cd5ea0c3d871f08dd8e8bf15e80e46b70c21c102e
                                        
                                            GET /img/butikk_left1.jpg HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:59:57 GMT
Etag: "1ac8-3ecc7d8053940"
Accept-Ranges: bytes
Content-Length: 6856
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   6856
Md5:    676c176c2dca69ec00e341ec78ad0a7c
Sha1:   5afeee3e82060d6e9e7f39f1989a5fa8208ed6ed
Sha256: 75dfc2da1ad3dac45056a619658446e6198f5e7ae1e687d535bc55938f255650
                                        
                                            GET /frameset/gullboden.css HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/footer.htm

                                         
                                         164.132.160.172
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Location: http://http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com/bofa/
Content-Length: 262
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   262
Md5:    c16eb3b15ee1f2c3b7c777bc39237ae2
Sha1:   4d3d7de022b267880969d0484e36e51bdaeab0e9
Sha256: ceaa6d4b4e7694af3e3c3cc9bd52cfedeacd50ca98655a165c7fe04488560952
                                        
                                            GET /frameset/stm31.js HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:55:46 GMT
Etag: "84dc-3ecc7c90f4480"
Accept-Ranges: bytes
Content-Length: 34012
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   34012
Md5:    4ab332cdafc60076c89b4542b1c553c3
Sha1:   d99e74b0a891990a7233ad4a649fca3a43adf887
Sha256: ffc96df94dde338f6a4390b0de7c8cc99c1a96b33c3f45f3873b0a0c95db79b7
                                        
                                            GET /img/butikk_right1.jpg HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/htm/forside.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:00 GMT
Etag: "1bd2-3ecc7d8330000"
Accept-Ranges: bytes
Content-Length: 7122
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   7122
Md5:    a398d2967180d09e866aaea971c46866
Sha1:   db6657fdfcddc19fac8866dd171bb745334bdd79
Sha256: a0ab61f2d4ad7ab1bf89f08359e2145c0f1c501950eb832e1f9e8520ac47a13c
                                        
                                            GET /img/butikk_right2.jpg HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/htm/forside.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:02 GMT
Etag: "1929-3ecc7d8518480"
Accept-Ranges: bytes
Content-Length: 6441
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   6441
Md5:    1488a1a883f254ca97f99677f2faf33a
Sha1:   34b41972e647a39c8a44c9ca01989f0d12ce8c89
Sha256: bdaffefc65b0a1f04810d1066f3202d4ac3dfd2a156e53ac1de13b07a37730e7
                                        
                                            GET /img/head-on.gif HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/footer.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:12 GMT
Etag: "1cd-3ecc7d8ea1b00"
Accept-Ranges: bytes
Content-Length: 461
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 29 x 20
Size:   461
Md5:    eaf06e296207bf6ffcf283b3e9287578
Sha1:   e1ece66242861774a54e2e862c277c87f39f1b74
Sha256: 6c040f4d5af26f374b9267aa69b8d2deaa35213c9e99f3bff457d66f50af901e
                                        
                                            GET /img/signOle.png HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/htm/forside.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 16:00:13 GMT
Etag: "32b-3ecc7d8f95d40"
Accept-Ranges: bytes
Content-Length: 811
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 51 x 30, 8-bit/color RGB, non-interlaced
Size:   811
Md5:    44fc1cfb469edc25deb4cc830cf43c3f
Sha1:   9ff5db241d80aaff323426938c214a787b8114d7
Sha256: 3bea01bf489df513c5ab2b5f3ca1eae4de739ab1d0bd85b31cdc0717f406aa15
                                        
                                            GET /img/butikk_centre.jpg HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/htm/forside.htm

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:59:55 GMT
Etag: "78f0-3ecc7d7e6b4c0"
Accept-Ranges: bytes
Content-Length: 30960
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   30960
Md5:    847a801c2fdfe29f17e30a0904605ece
Sha1:   0d63be19547451b659f8327b80d95e183b3010ce
Sha256: dbaeb138ad55198f2b9b3cbfc2736ffbc14449d9ae6d23d7d68f777d5b337e97
                                        
                                            GET /frameset/arrow_gray.gif HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:55:36 GMT
Etag: "61-3ecc7c876ae00"
Accept-Ranges: bytes
Content-Length: 97
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 7 x 7
Size:   97
Md5:    01b66c69c79bc3a14a0987f74f45f300
Sha1:   c55b9a477390be512cab0552c94317a602d38948
Sha256: 235ee54e044f395aa59dca78518c044e52405d20f683a96b2585da87452f6c82
                                        
                                            GET /frameset/arrow_r.gif HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:55:37 GMT
Etag: "33d-3ecc7c885f040"
Accept-Ranges: bytes
Content-Length: 829
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 7 x 7
Size:   829
Md5:    09cc63fd5d2d4610e91cea23a8710113
Sha1:   7345263a36d9020789b37f4e24ebffc55d17e1bc
Sha256: 1baf2544af353bcaff216621e697b4f90a5b3a5c8991f086451b01a2624a23d1
                                        
                                            GET /frameset/blank.gif HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gullboden.no/frameset/menu.html

                                         
                                         164.132.160.172
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 14 Dec 2018 23:33:49 GMT
Server: Apache
Last-Modified: Mon, 03 Jan 2005 15:55:39 GMT
Etag: "327-3ecc7c8a474c0"
Accept-Ranges: bytes
Content-Length: 807
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   807
Md5:    e95df9d604ab2d89febe370ae4d88fb1
Sha1:   d83f20ca93f0ee4997d74c5d8682de1a628fa35f
Sha256: 7f1182ed0bcc2206a25585a3d1b49a695b65b5aeb80027d9ebba970c40f9740c
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         164.132.160.172
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 14 Dec 2018 23:33:50 GMT
Server: Apache
Location: http://http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com/bofa/
Content-Length: 262
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   262
Md5:    c16eb3b15ee1f2c3b7c777bc39237ae2
Sha1:   4d3d7de022b267880969d0484e36e51bdaeab0e9
Sha256: ceaa6d4b4e7694af3e3c3cc9bd52cfedeacd50ca98655a165c7fe04488560952
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: gullboden.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         164.132.160.172
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 14 Dec 2018 23:33:52 GMT
Server: Apache
Location: http://http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com/bofa/
Content-Length: 262
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   262
Md5:    c16eb3b15ee1f2c3b7c777bc39237ae2
Sha1:   4d3d7de022b267880969d0484e36e51bdaeab0e9
Sha256: ceaa6d4b4e7694af3e3c3cc9bd52cfedeacd50ca98655a165c7fe04488560952
                                        
                                            GET /bofa/ HTTP/1.1 
Host: http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /bofa/ HTTP/1.1 
Host: http-www.bankofamerica.com-onlinebanking-notification.xxyy111.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing