| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/styles.css | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/styles.css IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/styles.css HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 3e2649366f7491291564d2b6a9bf2463
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bUdLHRlhh20zcDXD74WjJgGSI%2BDZc9VQ0j7RwYZr7R%2FtT1roRlFrkvgWZXx0RHSxGqLfscnC74oMNE%2BlD2RSt6DfpSwdxlGIgAj5djMy8JFHKiKTTeyPFxosb%2BlWxZz4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ec9d856b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidno-4ea331ae4c5bc3a12e6cf8340862d4c0.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: c14afd4db56531fde0686012f5ec8960
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mQ%2BNSv8EFiuX0vr7uw5FB0%2FVDlA76qRZ9qprtTCcIEjA%2BvPoJbIJab5t%2Fk7ouKl18dGe535FwAMYWdT0HKnAsw9bnTI4KJGjRYcQJSCInDD3IxCjIZzdC5F1VtqJ2w33"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9d956b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/bankidnomobile-8bd2f3c1665c6c00eff2af6bd153e9f6.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: aa48bdad79da25b7ee6d02655f145323
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cap9LF1qES4McVu9MMPw%2Bv4DBUAMChuioAN2x2EhKeku%2BUjs33AGfrr4D40NLqAt07TuraJqKqvSYusqpFkCGv0AY7tGd8pjaBgzCV3WJBy%2B1KeYBNAfN2krpO0UQmOX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9da56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 9f74ffa5044758a559da31def3627834
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Fsoc1lp3aYLrT5v3wAM9b6b90l30J%2FaVJgMcayT4vUPcQDxP4DqOqNeRNTaps1jQ60OSwUxoTFVJtv4ybJqXPpyF2QW0Rx%2B0QYzEBuNZiTWPoUStKxP9wMuP0TWUhIe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9db56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/no-connection-83f79e2367a313b468986e12a237c346.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: ff51a39d577196f328a3cb037688f4da
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mdw2aUNaVqRlDSGU12XTKfYk54Hl5k3hYYqVfgVu4b2MApBNSD8vXesBeVXgmkhoFL5mR2u80cDQ0MQiwB2%2BNXMq8SX7sLW%2BS%2FAOZHpfUnsM7cBBRmPCGJOJqT%2Fs8b2N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9e156b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/empty-3857ebe69f653487f8c9d99adde4657f.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 1848331098400e29f7355965c36b9062
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PFkVHR1psxSm1B0dndCHraARdoWnIlxWD0YuwDquMxW%2B6dQRzMq7QZbPW230bghLFj6567oDmJNWpWiOGzXAguYNjkPu87sZZUemyCxhayjdUxsF5MNwd2Vn%2BCLMykR%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9e456b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/favicon.ico | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/favicon.ico IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/favicon.ico HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 413c9a8ef6deebbff1f0cfb9250df7bf
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ObzqDHmPQbQFKpwMeLRfhUctwkobFGqoHlRpeeUR59cEs2Ors1HchC7f6bdp0KWcQViBoMc0j%2FtVi1vuQJAHg8ZNjZz6iCPWUGjyyE0H2y2zlnzALxKUzKQjjSiRjPd9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e7201b1b56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php | 188.114.96.1 | 200 OK | 30 kB |
URL User Request GET HTTP/2nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code | urlquery | suspicious | Suspicious - Anti-debugging code |
GET /auth/b84b4905813930de2182af9c0529c6e7/login.php HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=UTF-8
edge-cache-engine: varnish
edge-request-id: 27f79460cf43041e626331bc656b9b95
vary: Accept-Encoding
edge-cache-engine-mode: ACTIVE
age: 22
x-request-id: 27f79460cf43041e626331bc656b9b95
edge-cache-engine-hit: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1wwELoZYzqjgq6QcgZBSnGmY6dYq%2BoazZhjUZEy4YY5aMo4TuKnM2%2FZGRDj4ULXycaycmzXgZl3j7V5fWjt0uhe9Px5A2pOhZrdVsfaUNtb6TYymjQsOMYecK15AhNrr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71c8d1356cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 8c6a54a41f0e6839f3d597c407410974
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U9kVAdb%2BLAfGsohLpUWX7PGLf3YlJkgfM7CTIzMLxN4jz5KS3Jo9cklnKMJvCCjFxaL7nCs%2FGffFpfvPt4JedButZLLpPbb60GLEtyVGoJnGDqIbf%2FHKhqGOYZO%2Bu0Ba"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9dd56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/svg/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 4ac43b97fb3790fbf24a6d93e47b3121
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P2Eb%2F%2BzTnBeOyGZUcpQLgjxPHSPb5rQvx9bXA9OVz4QTa4wakzAKTAiEEPedsx0XqXjevUUHstwaDrOvGdmJvQJ8zZkXwvNFa3CYsnXezxthdscrAj7B6lacdZuoGjGG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9e556b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/jquery.min.js | 188.114.96.1 | 403 Forbidden | 318 B |
URL GET HTTP/3nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/res/jquery.min.js IP188.114.96.1:443
Requested byhttps://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php CertificateIssuerGoogle Trust Services LLC Subjectnordea-no.xyz FingerprintC9:20:61:81:45:48:07:79:20:13:3D:94:BC:C9:32:A6:78:D2:F2:A6 ValidityMon, 15 Apr 2024 09:23:56 GMT - Sun, 14 Jul 2024 09:23:55 GMT
File typeHTML document, ASCII text, with very long lines (329), with no line terminators Hasha76e0e5ab2f70dec98377f906933120d e8c746560f35a864b6eb16568c58c12127bb564d 72a08d90f531230bbdb3e582280b10246ab1f74c2afc3848a7645628c1365ed0
GET /auth/b84b4905813930de2182af9c0529c6e7/res/jquery.min.js HTTP/1.1
Host: nordea-no.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nordea-no.xyz/auth/b84b4905813930de2182af9c0529c6e7/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 14:49:56 GMT
content-type: text/html; charset=iso-8859-1
edge-cache-engine: varnish
edge-request-id: 038dc658008f66a7d6756f09e309b462
edge-cache-engine-mode: ACTIVE
vary: Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P9yBamZJAaAeh8I2m%2BBd1hwqffV8MmNuTtWtYSv%2FOWmnJ3pFQ36C%2F5yoqEDnGUJKhhdZCiJs6fJpwbT90zaolQdqATW1WfyOhgXZJ5c%2FvRlCIPo0LK25VOp5MZGMO94t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796e71ed9e756b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|