Report - port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php

Report Overview

Submitted URL
port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
IP
45.55.112.74
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2023-06-06 00:15:46
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-05	2.7 kB	5.6 kB	142.250.74.131
login.sparebank1.no	unknown	unknown	2017-01-30	2023-03-06	6.6 kB	362 kB	193.212.175.201
upload.wikimedia.org	2215	2003-03-16	2012-05-21	2023-06-05	541 B	29 kB	91.198.174.208
translate.google.com	1156	1997-09-15	2012-05-30	2023-06-05	1.1 kB	200 kB	216.58.211.14
port-3000-php-flaar287-essence9955619004.codeanyapp.com	unknown	2016-07-04	2023-06-03	2023-06-05	1.7 kB	31 kB	45.55.112.74
www.sparebank1.no	unknown	2016-05-11	2012-06-29	2023-05-19	8.4 kB	471 kB	193.212.175.209
translate.googleapis.com	1005	2005-01-25	2012-05-31	2023-06-05	5.9 kB	555 kB	216.58.207.202
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-06-05	2.1 kB	14 kB	142.250.74.35
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-05	508 B	4.2 kB	142.250.74.35
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2023-06-05	2.3 kB	9.5 kB	216.58.207.202

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-05	medium	port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
2023-06-05	medium	port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.RfvDgs7LlIw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpCJ49tDXAyHqLbJCjm3OAv03gCSQ/m=el_main	227 kB	2023-06-06	2023-08-03
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.RfvDgs7LlIw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpCJ49tDXAyHqLbJCjm3OAv03gCSQ/m=el_main IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 02:15:47 Last Seen2023-08-03 12:33:53 Times Seen26 Hash a6f585ad3d109781c5ed87463821878e ed471a915ac8305c6455ed3bc223c03f0e0b75ee 34b591ce76ac42a1482d38c5a817fb57b22f737393783fe350e27d1a34180f61 Loading...

	unknown	2 B	2023-03-08	2024-05-09
Pretty Introduced by javascriptURL Embedded in HTML false Observations First Seen2023-03-08 01:54:34 Last Seen2024-05-09 20:35:23 Times Seen1424 Hash e6fda0f0d3e0adfff69e334462d1ef6a b6ee60926c0a426addcbb7e087d4274498f35b1c 6f49cdbd80e1b95d5e6427e1501fc217790daee87055fa5b4e71064288bddede Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main	221 kB	2023-06-06	2023-06-07
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 00:37:24 Last Seen2023-06-07 00:57:45 Times Seen101 Hash 66e1e8babd7e11e70eb1b55c6b1f8797 1dbd41fee441a6f5b0a3878228951eeca1af8e55 db0041c31fbbec6fdc6cc8fa2a829ea66efede78fff5d1be0272c1db9362b7b3 Loading...

	port-3000-php-flaar287-essence9955619004.codeanyapp.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_conf	80 kB	2023-06-06	2023-06-06
Pretty URL port-3000-php-flaar287-essence9955619004.codeanyapp.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 02:15:47 Last Seen2023-06-06 02:15:47 Times Seen1 Hash 4829ab4b01fc7b6b8ba9305f5f1117a7 38c2230cc81ffa6dcae975d750cf1a0b279463a2 fc83c4f5b254802107090c3a5096c5ca6d173a9f9de987b8aabc0218d6276a47 Loading...

	port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php	1.4 kB	2023-06-06	2023-08-03
Pretty URL port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php IP 45.55.112.74 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 02:15:48 Last Seen2023-08-03 12:33:53 Times Seen13 Hash d6374f66682f9f2afca833a672f88758 9fee3def53cc6054a8f034cc8edeb2de0dbaeb0f 862360d3f0bf07bac86b0702819d6a49ed1722e7759f62b2014910a6648d5702 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main	227 kB	2023-03-12	2023-08-03
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:25:27 Last Seen2023-08-03 01:06:14 Times Seen22 Hash 8f57bc159c99c1525c00e4bed83d0ca4 688a88793c63110b3e52b169c31e78ce55f9691b 366c7413487a81f958b3bafb9859fa92dfb435fbf73444f754e22197967d4493 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7669b185c3d3cba40700b7ab04031c6b	3.0 kB	2023-06-06	2023-07-04
Pretty Observations First Seen2023-06-06 02:15:48 Last Seen2023-07-04 01:19:42 Times Seen7 Hash 7669b185c3d3cba40700b7ab04031c6b 133ada187505a276cf017bce77cc8210618b990f eb3b35e6bac9a58a48482bca6b4db3c3547b0ea1d2ef536f173403f69175a39f Loading...

HTTP Transactions (58)

URL IP Response Size

port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php

45.55.112.74

200 OK

30 kB

URL User Request GET HTTP/2
port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
IP
45.55.112.74:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectcodeanyapp.com
Fingerprint27:C0:22:A5:D9:29:06:F4:C3:9F:46:BB:A7:23:E2:F0:6B:54:42:AD
ValidityFri, 21 Apr 2023 16:11:36 GMT - Thu, 20 Jul 2023 16:11:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (712), with CRLF line terminators
Size
30 kB (30496 bytes)
Hash
d37b53197ff9bf2de291dae5131ec3e4
6fdabeebe0aca8cf7a82c0e69e7e2dab886282ed
c80d5d632303546ec6503c97272ac4a342296a3d21ac29a3ebb8cfc9951ea800

Detections

Analyzer	Verdict	Alert
openphish	SpareBank 1

HTTP Headers

GET /sp/nor/cc.php HTTP/1.1
Host: port-3000-php-flaar287-essence9955619004.codeanyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Mon, 05 Jun 2023 23:50:35 GMT
content-type: text/html; charset=UTF-8
content-length: 30496
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_3_0.woff2

193.212.175.209

200 OK

17 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_3_0.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17240, version 1.65\012- data
Size
17 kB (17263 bytes)
Hash
af3424cfe3c74b455b82329b541b4da0
3dd21e4655566b3bd4ecafb25561b62f13bf7c72
7b795caac09bf7d496e724a14fbf161bc6b788b4d30059bff86f4539840655cb

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_3_0.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 02:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "4358-5fd58746d80ce-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17263
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.1E16.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff2

193.212.175.209

200 OK

35 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35052, version 1.0\012- data
Size
35 kB (35080 bytes)
Hash
85e620fd649baca0ff4080d50d203cb7
691df83b47a64de8eb749ad57781e890d38416a7
85754d88ab577119d1c07094f6f3fd15c16a2b24e612b6935d701d654cd7af91

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 02:13:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "88ec-5fd58731d196d-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 35080
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.FC01.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_4_0.woff2

193.212.175.209

200 OK

18 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_4_0.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17492, version 1.65\012- data
Size
18 kB (17515 bytes)
Hash
6dabaf5498a12979d5c811651cb28717
30ef58e0ed6f82409e56aa6edcb98ee7d35b3597
d116a6fdf67f5597847c1ba463f2f79983c156eab2b0ac66d15f9837533d0eea

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_4_0.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:47:45 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "4454-5fd59c400f139-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17515
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.42E2.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-2|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_2_0.woff2

193.212.175.209

200 OK

17 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_2_0.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17244, version 1.65\012- data
Size
17 kB (17267 bytes)
Hash
2cf2ffefb654cc3887430b3ec0d5ff9b
e03121d86ab3b3edf79152d299f6ce17ec99a3f8
2ee4b8fa0c421a3c15ef4b19d06a09c54ce3450dfa3ed1ea8f6589bb6445ea0c

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_2_0.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 02:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "435c-5fd58746d80ce-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 17267
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.C7C5.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff2

193.212.175.209

200 OK

37 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37372, version 1.0\012- data
Size
37 kB (37400 bytes)
Hash
79c94508d6f926bd4786b062863ec94b
63d0035785c9343ce1c0506af8bdc4c8cd7a7af8
ce76fadc5aa6c2c526765866945a882ecebc84237257274b970a3ba55f728748

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 02:13:33 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "91fc-5fd58731d2525-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 37400
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.1E16.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_1_0.woff2

193.212.175.209

200 OK

15 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_1_0.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14970, version 1.65\012- data
Size
15 kB (14993 bytes)
Hash
d2e42aa89dfaf9115cac7df6ab3caa7b
ee45f93a76cb5e400bb99405c6b9dfd0e700faec
157c1535c8d017af7791f4501b2fc28f458353216e653eb820e12df2195df116

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_1_0.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:46:17 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "3a7a-5fd59bec3a793-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 14993
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.E42C.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZH56o; path=/; HttpOnly; Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff2

193.212.175.209

200 OK

32 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 32268, version 1.0\012- data
Size
32 kB (32291 bytes)
Hash
67e629cc89c5a988984658425239967a
f3c681cbba6b62dcfa1b2f5415394af3073b4e58
2ce6e6c3b9b0a2ef6892e9ca6be485f26e83113fec778ae995917bda5cea5e5b

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:47:45 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "7e0c-5fd59c4018991-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 32291
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.FC01.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-2|ZH56o; path=/; HttpOnly; Secure

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
df2c4343cb60d7b80a236621d9420bcf
d3469e9e2c43c94b12975da73fdfd44d75b53505
34dd045a98470df1fd958512c63d10a8d346b3201c8fad27b3dc391e30e93943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base.css?refnr=1561370849

193.212.175.209

200 OK

55 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base.css?refnr=1561370849
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
55 kB (55415 bytes)
Hash
5963459c85a570d047a559fbbea4dd20
de5fcdcead7aa70ecf58d938799bbe60b39bd0bb
77b43dc3aecaf7bf8b32e8cc17e7bf57268ea8a27562c2ca4589a6e5b84adf1f

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base.css?refnr=1561370849 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:46:17 GMT
Accept-Ranges: bytes
Cache-Control: max-age=300, must-revalidate
Expires: Tue, 06 Jun 2023 00:20:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "59387-5fd59bec3de44-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 55415
Content-Type: text/css
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.C183.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZH56o; path=/; HttpOnly; Secure

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f6e0fad54cb828605d258b3a3fc3494d
1998f119ae42787f25cac22435e05b7d8a7ecbcc
fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f6e0fad54cb828605d258b3a3fc3494d
1998f119ae42787f25cac22435e05b7d8a7ecbcc
fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

193.212.175.201

200

12 kB

URL GET HTTP/1.1
login.sparebank1.no/static/loginapp.css?hash=90dadb47366df7450d33
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (42591)
Size
12 kB (12010 bytes)
Hash
433304b2a68e6aef8923d6f9c1d77f2f
efbdd5db7e5458944c7b0bd045f609fa5de5a43f
f26cdef11c580d7f9f6fb0611526bed80bc86ab8f081f9f80a1d8c0bf336841a

HTTP Headers

GET /static/loginapp.css?hash=90dadb47366df7450d33 HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:28 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-1Ghp6uEChV/NpmxynNVSJg' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Accept-Encoding, User-Agent
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: text/css
accept-ranges: bytes
etag: "0433304b2a68e6aef8923d6f9c1d77f2f--gzip"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
content-encoding: gzip
x-envoy-upstream-service-time: 3
server: istio-envoy
transfer-encoding: chunked
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=j6x7acqHv4F4fdx-iE0mhHt6uI5T42LM753rUIWvGlA; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.D076.647E7AA0;path=/;Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_0_0.woff2

193.212.175.209

200 OK

15 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_0_0.woff2
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15002, version 1.65\012- data
Size
15 kB (15025 bytes)
Hash
52eb476f08bb82b35eb29c4615c52c1b
492c47eb0bc9fd7014ccb1e02a6d2fa880deb693
df9d35a1e306de1bb99baf929ac68a8e98a35bea6e65f0614e390b00c100e92e

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/2FDE32_0_0.woff2 HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:28 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 02:13:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:28 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
ETag: "3a9a-5fd58746d80ce-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 15025
Content-Type: font/woff2
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.E539.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZH56o; path=/; HttpOnly; Secure

translate.googleapis.com/translate_static/css/translateelement.css

216.58.207.202

200 OK

3.6 kB

URL GET HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (22967)
Size
3.6 kB (3632 bytes)
Hash
92eb7e16d328c7aae527e47c7da547c2
2a534b7b7d306b06f3e4ddcc466d4523725c47c5
8953492dba77df435e5fbcd568b638fe049279d04fa0403f859d33e72fea74e8

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 00:04:56 GMT
expires: Tue, 06 Jun 2023 01:04:56 GMT
cache-control: public, max-age=3600
age: 632
last-modified: Mon, 09 Jan 2023 20:58:00 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f6e0fad54cb828605d258b3a3fc3494d
1998f119ae42787f25cac22435e05b7d8a7ecbcc
fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.RfvDgs7LlIw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpCJ49tDXAyHqLbJCjm3OAv03gCSQ/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.RfvDgs7LlIw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpCJ49tDXAyHqLbJCjm3OAv03gCSQ/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (2112)
Size
78 kB (77658 bytes)
Hash
a6f585ad3d109781c5ed87463821878e
ed471a915ac8305c6455ed3bc223c03f0e0b75ee
34b591ce76ac42a1482d38c5a817fb57b22f737393783fe350e27d1a34180f61

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US.RfvDgs7LlIw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpCJ49tDXAyHqLbJCjm3OAv03gCSQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77658
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 16:26:47 GMT
expires: Sun, 02 Jun 2024 16:26:47 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Nov 2021 06:12:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 200921
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

upload.wikimedia.org/wikipedia/commons/thumb/5/5b/SpareBank1.svg/1200px-SpareBank1.svg.png

91.198.174.208

200 OK

28 kB

URL GET HTTP/2
upload.wikimedia.org/wikipedia/commons/thumb/5/5b/SpareBank1.svg/1200px-SpareBank1.svg.png
IP
91.198.174.208:443
ASN
#14907 WIKIMEDIA

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.wikipedia.org
Fingerprint91:D4:DD:DD:2F:F9:18:E0:19:07:D8:6B:C7:54:54:F1:1A:8F:2C:DC
ValidityThu, 27 Oct 2022 00:00:00 GMT - Fri, 17 Nov 2023 23:59:59 GMT

File type
PNG image data, 1200 x 332, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (27569 bytes)
Hash
e301fd2f6df0ff6e53d31ac049462e29
d1f3673df3f2bc8280598b8213c10863d86b549c
6fdd39cfcee7f544b612cd09a598c000d96054cc802026195096964677f236d2

HTTP Headers

GET /wikipedia/commons/thumb/5/5b/SpareBank1.svg/1200px-SpareBank1.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Jun 2023 17:13:35 GMT
content-type: image/png
content-length: 27569
content-disposition: inline;filename*=UTF-8''SpareBank1.svg.png
etag: e301fd2f6df0ff6e53d31ac049462e29
last-modified: Sat, 26 Feb 2022 18:48:03 GMT
server: ATS/9.1.4
age: 25313
x-cache: cp3061 hit, cp3065 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3065"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 91.90.42.154
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (2112)
Size
78 kB (77669 bytes)
Hash
8f57bc159c99c1525c00e4bed83d0ca4
688a88793c63110b3e52b169c31e78ce55f9691b
366c7413487a81f958b3bafb9859fa92dfb435fbf73444f754e22197967d4493

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 19:39:34 GMT
expires: Tue, 04 Jun 2024 19:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Nov 2021 00:11:28 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

193.212.175.201

302

0 B

URL GET HTTP/1.1
login.sparebank1.no/static/images/6376e00e381273cf3d23c3230550cff2-engangskode-app-ikon.svg
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/images/6376e00e381273cf3d23c3230550cff2-engangskode-app-ikon.svg HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-cIO3nqttzArr/o2mACak3w' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
cache-control: must-revalidate,no-cache,no-store
content-language: en-US
location: https://login.sparebank1.no/
content-length: 0
x-envoy-upstream-service-time: 3
date: Tue, 06 Jun 2023 00:15:28 GMT
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=MdN4SwQdgDSW5-8ikJuvda9hAc9yZM9-zX8zENwqq04; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.D076.647E7AA0;path=/;Secure

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f6e0fad54cb828605d258b3a3fc3494d
1998f119ae42787f25cac22435e05b7d8a7ecbcc
fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
df2c4343cb60d7b80a236621d9420bcf
d3469e9e2c43c94b12975da73fdfd44d75b53505
34dd045a98470df1fd958512c63d10a8d346b3201c8fad27b3dc391e30e93943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7e560a1588ea25ad25242200936b149
946009b90527a122f590495540ca0d02f29945ec
cc56fa95fb4433116e1625385459b3dbab6ee45fd47a0c51789d9e50dc4e01e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css

142.250.74.35

200 OK

4.2 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (23228), with no line terminators
Size
4.2 kB (4205 bytes)
Hash
edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 21:45:55 GMT
expires: Fri, 31 May 2024 21:45:55 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 354573
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

193.212.175.201

200

1.8 kB

URL GET HTTP/1.1
login.sparebank1.no/
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.8 kB (1802 bytes)
Hash
248b67795fc9a463a4fc09df88470ad7
541b23130aa2e9c81091498bee8a2b6658f3d2ae
52b68751c93d90c872dae7c22fc97b53047028d95f683bd59e910a53a18119f4

HTTP Headers

GET / HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:28 GMT
set-cookie: csrf=7-fatjoDeMz3gTc0094fsY-6JmavkO77P9HSR11vxio; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
Spor=84b92ce4-8d30-4e4d-b445-23a187619890;Max-Age=94608000;Domain=sparebank1.no;Path=/;Secure;SameSite=None;
DSESSIONID=5B5A2A9A.D076.647E7AA0;path=/;Secure
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-9lMgjW48A3wlO6PmCy9naQ' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
content-language: en-US
content-type: text/html;charset=utf-8
etag: "0248b67795fc9a463a4fc09df88470ad7"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
vary: Accept-Encoding, User-Agent
content-length: 1802
x-envoy-upstream-service-time: 3
server: istio-envoy
Strict-Transport-Security: max-age=31536000

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7e560a1588ea25ad25242200936b149
946009b90527a122f590495540ca0d02f29945ec
cc56fa95fb4433116e1625385459b3dbab6ee45fd47a0c51789d9e50dc4e01e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 00:15:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.google.com/translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en

216.58.211.14

200 OK

133 kB

URL GET HTTP/3
translate.google.com/translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT

File type
ASCII text, with very long lines (2586)
Size
133 kB (133439 bytes)
Hash
86baddf9d4647e2b13adc8fdbcb6348f
461e9bf3fc048aa4965fa78e966f419edf959645
34190c62b5e470548c7420066d82ce5b35e89dd3d50c8a47b3c612ed5874ed0c

HTTP Headers

GET /translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Jun 2023 00:15:28 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+059; expires=Thu, 05-Jun-2025 00:15:28 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (2112)
Size
78 kB (77669 bytes)
Hash
8f57bc159c99c1525c00e4bed83d0ca4
688a88793c63110b3e52b169c31e78ce55f9691b
366c7413487a81f958b3bafb9859fa92dfb435fbf73444f754e22197967d4493

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 19:39:34 GMT
expires: Tue, 04 Jun 2024 19:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Nov 2021 00:11:28 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (2112)
Size
78 kB (77669 bytes)
Hash
8f57bc159c99c1525c00e4bed83d0ca4
688a88793c63110b3e52b169c31e78ce55f9691b
366c7413487a81f958b3bafb9859fa92dfb435fbf73444f754e22197967d4493

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 19:39:34 GMT
expires: Tue, 04 Jun 2024 19:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Nov 2021 00:11:28 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (2112)
Size
78 kB (77669 bytes)
Hash
8f57bc159c99c1525c00e4bed83d0ca4
688a88793c63110b3e52b169c31e78ce55f9691b
366c7413487a81f958b3bafb9859fa92dfb435fbf73444f754e22197967d4493

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US._a72MBWOe_A.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrdoMFzLHbeFB21qMno4e3wH6vfUA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 19:39:34 GMT
expires: Tue, 04 Jun 2024 19:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Nov 2021 00:11:28 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

193.212.175.201

302

0 B

URL GET HTTP/1.1
login.sparebank1.no/static/images/6376e00e381273cf3d23c3230550cff2-engangskode-app-ikon.svg
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/images/6376e00e381273cf3d23c3230550cff2-engangskode-app-ikon.svg HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Cookie: Spor=84b92ce4-8d30-4e4d-b445-23a187619890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-f1AZPW6Xt7NPLRz9eG7lag' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
cache-control: must-revalidate,no-cache,no-store
content-language: en-US
location: https://login.sparebank1.no/
content-length: 0
x-envoy-upstream-service-time: 4
date: Tue, 06 Jun 2023 00:15:29 GMT
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=QyR81_EZSO6lsqaGerpSHyuEjE63yTCsHzuquKAenLk; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.D076.647E7AA0;path=/;Secure

translate.google.com/translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en

216.58.211.14

200 OK

65 kB

URL GET HTTP/3
translate.google.com/translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT

File type
gzip compressed data, max compression\012- data
Size
65 kB (65257 bytes)
Hash
8eb56e1e7b2717510fdedb79355dd54e
e7227359a2caf28776208af6df5387a7cb300db3
6be81d43b3db9d47331ff2a485c28dddb247692dbc52b7b3117f4f5c0481cee5

HTTP Headers

GET /translate_a/element.js?cb=TECB_1E07F158C6FA4460B352973E9693B329&client=tee&hl=en HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Jun 2023 00:15:28 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+902; expires=Thu, 05-Jun-2025 00:15:28 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

193.212.175.201

200

32 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Title-Medium-Web.e5bbe94f2c3d855a8ae9.woff2
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 32268, version 1.0\012- data
Size
32 kB (32268 bytes)
Hash
67e629cc89c5a988984658425239967a
f3c681cbba6b62dcfa1b2f5415394af3073b4e58
2ce6e6c3b9b0a2ef6892e9ca6be485f26e83113fec778ae995917bda5cea5e5b

HTTP Headers

GET /static/fonts/SpareBank1-Title-Medium-Web.e5bbe94f2c3d855a8ae9.woff2 HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-Ex67Dm2gvuhgLN/5nrMXRw' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "067e629cc89c5a988984658425239967a"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 32268
x-envoy-upstream-service-time: 3
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=98rkXlUGaoyCTP4d5eY-nKH0-cG3GDHFPNqSupnRS2s; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.52EB.647E7AA1;path=/;Secure

193.212.175.201

200

35 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Medium-Web.d7924534ee746a22ba02.woff2
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35052, version 1.0\012- data
Size
35 kB (35052 bytes)
Hash
85e620fd649baca0ff4080d50d203cb7
691df83b47a64de8eb749ad57781e890d38416a7
85754d88ab577119d1c07094f6f3fd15c16a2b24e612b6935d701d654cd7af91

HTTP Headers

GET /static/fonts/SpareBank1-Medium-Web.d7924534ee746a22ba02.woff2 HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-KRFbibrjqreTbuQMs1wSRQ' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "085e620fd649baca0ff4080d50d203cb7"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 35052
x-envoy-upstream-service-time: 3
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=Mb_axctjt0_NpCWVENbSWqg1NU8G016V0gFMPN0wQQk; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.EE61.647E7AA1;path=/;Secure

193.212.175.201

200

1.8 kB

URL GET HTTP/1.1
login.sparebank1.no/
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.8 kB (1802 bytes)
Hash
3510e60da20e240142671576dd2a83a9
a60322ad42d501e3942aee511a18499667f33151
d7bcaf79d4b8aa9f48edb278ed77a77c01b1ceefbb34a7db4a5398186c24d80b

HTTP Headers

GET / HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
DNT: 1
Connection: keep-alive
Cookie: Spor=84b92ce4-8d30-4e4d-b445-23a187619890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-Q7xkdakwKm+90rcVENesaA' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
content-language: en-US
content-type: text/html;charset=utf-8
etag: "03510e60da20e240142671576dd2a83a9"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
vary: Accept-Encoding, User-Agent
content-length: 1802
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=cZloeCVVV-9ijwK4NBr_TH2DXqIGvOmarZRnVqfE-VY; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.D076.647E7AA1;path=/;Secure

193.212.175.201

200

36 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Title-Medium-Web.83db1ccd8c28776f42c0.woff
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format, CFF, length 35500, version 0.0\012- data
Size
36 kB (35500 bytes)
Hash
ec68fe1ce2151dfc5b8da9111dc56534
b89056fa6c28edd97480bb64678a6faa0130ffab
72d507dc896d6d54088aaaf0f4b6ae178df2f30925f90f68de4e75cc50890da5

HTTP Headers

GET /static/fonts/SpareBank1-Title-Medium-Web.83db1ccd8c28776f42c0.woff HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-4frVIHBZ8/dbPsyVfL9S3w' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "0ec68fe1ce2151dfc5b8da9111dc56534"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 35500
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=GXRuowBC_1Afe-96Xrp8fsjmlW8zWi5JcVNNfErzofo; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.EE61.647E7AA1;path=/;Secure

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff

193.212.175.209

200 OK

43 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 43132, version 0.0\012- data
Size
43 kB (43132 bytes)
Hash
2d74c970cd8306b52205de70489e9e42
80151cdd44e10d451fb5534dcb53700b0123b70f
f71e7a728520d2cc31b53d634b38f45b42a24e3d93e018cd9fb8f5f7c3387011

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Medium-Web.woff HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:29 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:18:57 GMT
Accept-Ranges: bytes
Content-Length: 43132
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:29 GMT
Vary: Accept-Encoding,User-Agent
ETag: "a87c-5fd595cf9bd88-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.42E2.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-1|ZH56p; path=/; HttpOnly; Secure

193.212.175.201

200

63 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Medium-Web.63546d0d49b5e1f6d60a.woff
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 43132, version 0.0\012- data
Size
63 kB (62792 bytes)
Hash
6390bbfcca7b9a5723d4643810ad6765
0663c61b0707146c7744aeb8904e44bf51ac7857
ade6b909c3097234c25dc163a00bf42f0cf0456f412bf121d602ea24efa62632

HTTP Headers

GET /static/fonts/SpareBank1-Medium-Web.63546d0d49b5e1f6d60a.woff HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-/VgD/g/NeHnM4AefAyblUQ' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "02d74c970cd8306b52205de70489e9e42"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 43132
x-envoy-upstream-service-time: 3
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=JItj2xutO6bvabL69g0roKy2W3K0z_DD2yghrCaTvYQ; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.52EB.647E7AA1;path=/;Secure

port-3000-php-flaar287-essence9955619004.codeanyapp.com/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/images/symbol/ffe-icons.svg

45.55.112.74

404 Not Found

422 B

URL GET HTTP/2
port-3000-php-flaar287-essence9955619004.codeanyapp.com/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/images/symbol/ffe-icons.svg
IP
45.55.112.74:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerLet's Encrypt
Subjectcodeanyapp.com
Fingerprint27:C0:22:A5:D9:29:06:F4:C3:9F:46:BB:A7:23:E2:F0:6B:54:42:AD
ValidityFri, 21 Apr 2023 16:11:36 GMT - Thu, 20 Jul 2023 16:11:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
422 B (422 bytes)
Hash
b28755a293d98cb9447266b0ee0d077e
3a5948e37ac32047153160538b117da9cfa8ce39
13cea5758cb49ba5d689e4e415fc8a8bd062188a48f65817d311297f7fed0716

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/images/symbol/ffe-icons.svg HTTP/1.1
Host: port-3000-php-flaar287-essence9955619004.codeanyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: openresty
date: Mon, 05 Jun 2023 23:50:37 GMT
content-type: text/html; charset=iso-8859-1
content-length: 422
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.35

200 OK

846 B

URL GET HTTP/3
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 12:24:44 GMT
expires: Sat, 01 Jun 2024 12:24:44 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 301845
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 08:02:55 GMT
expires: Fri, 31 May 2024 08:02:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 403954
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/apple-touch-icon.png

193.212.175.209

200 OK

15 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/apple-touch-icon.png
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15086 bytes)
Hash
9c6d4bd7c98dde73a6bd7f4d368f8e28
1f47cc85966f348d3d8a76a721834d62aeeb2fae
d27293c4f9255411f029595ae3e3f2508ed8d32ac74159ea7f5b77ddb2845ef7

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/apple-touch-icon.png HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Cookie: Spor=84b92ce4-8d30-4e4d-b445-23a187619890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:29 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:47:47 GMT
Accept-Ranges: bytes
Content-Length: 15086
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:29 GMT
Vary: User-Agent
ETag: "3aee-5fd59c42096e0-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: image/png
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.C183.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=2-2|ZH56p; path=/; HttpOnly; Secure

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/3
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (1734)
Size
78 kB (77484 bytes)
Hash
66e1e8babd7e11e70eb1b55c6b1f8797
1dbd41fee441a6f5b0a3878228951eeca1af8e55
db0041c31fbbec6fdc6cc8fa2a829ea66efede78fff5d1be0272c1db9362b7b3

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 17:30:00 GMT
expires: Tue, 04 Jun 2024 17:30:00 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 03 Jun 2023 11:22:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 24329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main

216.58.207.202

200 OK

78 kB

URL GET HTTP/3
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (1734)
Size
78 kB (77484 bytes)
Hash
66e1e8babd7e11e70eb1b55c6b1f8797
1dbd41fee441a6f5b0a3878228951eeca1af8e55
db0041c31fbbec6fdc6cc8fa2a829ea66efede78fff5d1be0272c1db9362b7b3

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.en_US.17k7fFYlWPs.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq41pJ17yzYF_mHOyO3sJefSDIFDg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 17:30:00 GMT
expires: Tue, 04 Jun 2024 17:30:00 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 03 Jun 2023 11:22:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 24329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff

193.212.175.209

200 OK

106 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format, CFF, length 35500, version 0.0\012- data
Size
106 kB (106177 bytes)
Hash
a371abf1f22c7cce34af35e51969daac
5755cce883883908b1f6fa8f89700c84d77366e6
753f424b7b836c771cec9fd3e3ea35070a01ab079600551790be01d9d40a2be2

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Title-Medium-Web.woff HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:29 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 03:18:57 GMT
Accept-Ranges: bytes
Content-Length: 35500
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:29 GMT
Vary: Accept-Encoding,User-Agent
ETag: "8aac-5fd595cf975e7-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.1E16.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-1|ZH56p; path=/; HttpOnly; Secure

193.212.175.201

200

107 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Regular-Web.d00829e94233cec6c4f1.woff
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 46408, version 0.0\012- data
Size
107 kB (107351 bytes)
Hash
b03e44c298527f4bc207a99cf6a0abce
811135568150df62cbd7d6b0c6cf9e19783477f2
277d544394b6b796614561350026b2f4717d10684d5cbe592d4b10a198e99618

HTTP Headers

GET /static/fonts/SpareBank1-Regular-Web.d00829e94233cec6c4f1.woff HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-dcomJUOrzKT+5Lnssb075A' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff
accept-ranges: bytes
etag: "05dd929d573a9ffcca4f05ffc2dfa4cc3"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 46408
x-envoy-upstream-service-time: 5
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=KFdDhcdJlyNU58Qch4spwK1z7wR4nP9xmRo7GVRGpIA; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.F7E4.647E7AA1;path=/;Secure

193.212.175.201

200

15 kB

URL GET HTTP/1.1
login.sparebank1.no/static/favicon.ico
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15086 bytes)
Hash
8fb4f83bbcb2eb956262f1bcc1b2b8a4
73115e28014f06e81fa3a846b5286bba67e1b8f3
7ac308392252d9a9c5c5c359634b7ab6d5567bedccac542822ffd00fdcd8673a

HTTP Headers

GET /static/favicon.ico HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Cookie: Spor=84b92ce4-8d30-4e4d-b445-23a187619890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-VImsbs1AcrYid7IbL18o9g' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: image/x-icon
accept-ranges: bytes
etag: "08fb4f83bbcb2eb956262f1bcc1b2b8a4"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
content-length: 15086
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=a8zRvheNRsmh-GIt2v3-C74T6QTt3h8443nRWKxjsuE; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.D076.647E7AA1;path=/;Secure

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

142.250.74.35

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 08:05:11 GMT
expires: Sun, 02 Jun 2024 08:05:11 GMT
cache-control: public, max-age=31536000
age: 231018
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

216.58.207.202

1.5 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.5 kB (1475 bytes)
Hash
4b1e8d67278ab18f23b55c98bc98bcac
8c5214b71ce3465dcb085014f5e65207fb2fe719
c335127927c986b0765837d2effd361475d55279a8a9bab07151892f2e482c2e

HTTP Headers

GET /v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Jun 2023 00:15:30 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=TxoK9oUUVNyZfzucBCiJq--4iqC0jmN7ihOqLLdLw-P5HsqceeMQhXLe9cE6FxSeARyOxXjB44yq03onhZnUdsvNmxOYHA5TlCPEiFNgrN3AlUn07Rzazey2nqzlJU3TSsdKxTujjWU0ZX8fY_biRcp-CVWqCoe2W9OWqm2x3LY; expires=Wed, 06-Dec-2023 00:15:30 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+549; expires=Thu, 05-Jun-2025 00:15:30 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 06 Jun 2023 00:15:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

216.58.207.202

1.5 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.5 kB (1475 bytes)
Hash
4b1e8d67278ab18f23b55c98bc98bcac
8c5214b71ce3465dcb085014f5e65207fb2fe719
c335127927c986b0765837d2effd361475d55279a8a9bab07151892f2e482c2e

HTTP Headers

GET /v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Jun 2023 00:15:30 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=WJMZ-AmDyq0XkFx0zPb9rm9wRQClkjs9jxJE2sdAYKgXoRnRNVsExQNjC4BBhnGfpe2kDaYs_2dmdjfGOvrrdgC9J5-IMkk4CojMJCfSfsmGAr8keFABeqFymykjsjzYvqsNQ17QhehPVPWE-RmuWhy2JLfDdxGam2DLNCcNkYY; expires=Wed, 06-Dec-2023 00:15:30 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+088; expires=Thu, 05-Jun-2025 00:15:30 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 06 Jun 2023 00:15:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

216.58.207.202

1.5 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.5 kB (1475 bytes)
Hash
4b1e8d67278ab18f23b55c98bc98bcac
8c5214b71ce3465dcb085014f5e65207fb2fe719
c335127927c986b0765837d2effd361475d55279a8a9bab07151892f2e482c2e

HTTP Headers

GET /v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Jun 2023 00:15:30 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=JEXW210ufci66tB_78IJt04XfB99bfmq4XKr-n1S2-n3H069NhX4m8NhJ-jHySVryIqwQCF6ALvmk_YlVMkdsgI74KY9nJPypmCIvNUtwvgOsbEcS6UUDA6KSEiixGS3Nx4rOpj46Ah44G0_Vjbu2IoRBcUrPXoljBcRsQwPPGk; expires=Wed, 06-Dec-2023 00:15:30 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+593; expires=Thu, 05-Jun-2025 00:15:30 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 06 Jun 2023 00:15:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

216.58.207.202

1.5 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.5 kB (1475 bytes)
Hash
4b1e8d67278ab18f23b55c98bc98bcac
8c5214b71ce3465dcb085014f5e65207fb2fe719
c335127927c986b0765837d2effd361475d55279a8a9bab07151892f2e482c2e

HTTP Headers

GET /v1/supportedLanguages?client=tee&display_language=en-US&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Jun 2023 00:15:30 GMT
server: ESF
cache-control: private
content-length: 1475
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=UnM6qZF12Wf1nRwp9WRH-cCqeEb61699xwPQNkhvCWPFu3qOtHZgR1IWQhsegL_rkdKXveBj4h1AxmoQmUDyFb7uH6TR406hn6WBl8WgQ6HKzj_QYPKzOanekmSOZE10fg3tHWX-7iWalnihWK2OnDGZdegSDeTqDaFJUyW9mLY; expires=Wed, 06-Dec-2023 00:15:30 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+955; expires=Thu, 05-Jun-2025 00:15:30 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 06 Jun 2023 00:15:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css

142.250.74.35

200 OK

4.2 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
ASCII text, with very long lines (23228), with no line terminators
Size
4.2 kB (4205 bytes)
Hash
edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 21:45:55 GMT
expires: Fri, 31 May 2024 21:45:55 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 354575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

216.58.207.202

200 OK

0 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Tue, 06 Jun 2023 00:15:39 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+033; expires=Thu, 05-Jun-2025 00:15:39 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 06 Jun 2023 00:15:39 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

216.58.207.202

200 OK

131 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 241
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 06 Jun 2023 00:15:39 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+359; expires=Thu, 05-Jun-2025 00:15:39 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 06 Jun 2023 00:15:39 GMT

193.212.175.201

200

37 kB

URL GET HTTP/1.1
login.sparebank1.no/static/fonts/SpareBank1-Regular-Web.d65aaba253542601cd1e.woff2
IP
193.212.175.201:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subject*.sparebank1.no
Fingerprint29:1F:DE:5A:25:12:0A:44:46:27:CF:E2:0B:D0:B1:92:C5:A2:7C:C6
ValidityThu, 08 Dec 2022 00:00:00 GMT - Fri, 22 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37372, version 1.0\012- data
Size
37 kB (37372 bytes)
Hash
79c94508d6f926bd4786b062863ec94b
63d0035785c9343ce1c0506af8bdc4c8cd7a7af8
ce76fadc5aa6c2c526765866945a882ecebc84237257274b970a3ba55f728748

HTTP Headers

GET /static/fonts/SpareBank1-Regular-Web.d65aaba253542601cd1e.woff2 HTTP/1.1
Host: login.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://login.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
date: Tue, 06 Jun 2023 00:15:29 GMT
content-security-policy: default-src 'none'; img-src 'self' data: https://csfe.bankid.no https://statistikk.sparebank1.no; base-uri 'self'; font-src 'self' *.sparebank1.no data:; media-src 'self'; style-src 'self' 'unsafe-inline' 'report-sample' https://csfe.bankid.no https://services.bankid.no; object-src 'none'; script-src 'self' 'unsafe-inline' blob: *.sparebank1.no 'strict-dynamic' 'nonce-x6KPzaKbIg1+q7biNCI+3w' 'report-sample' 'unsafe-eval' https://csfe.bankid.no https://services.bankid.no https://www.sparebank1.no; report-uri https://www.sparebank1.no/logservlet/csp/enforce; form-action *.sparebank1.no; connect-src 'self' www.sparebank1.no *.demdex.net https://www.sparebank1.no; upgrade-insecure-requests; child-src https://csfe.bankid.no; frame-src https://csfe.bankid.no; frame-ancestors https://*.sparebank1.no https://*.dnbforsikring.no https://*.fremtind.no https://*.bnbank.no https://*.sbm.no https://*.lofavor.no https://*.coop.no
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=60, must-revalidate, public
content-type: application/font-woff2
accept-ranges: bytes
etag: "079c94508d6f926bd4786b062863ec94b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://login.sparebank1.no/
content-length: 37372
x-envoy-upstream-service-time: 4
server: istio-envoy
Strict-Transport-Security: max-age=31536000
set-cookie: csrf=Pu54SHA3iOLgzot06pq67L2733o8iERNTEbCboAd_Js; Domain=sparebank1.no; Path=/; Secure; HttpOnly; SameSite=Strict
DSESSIONID=5B5A2A9A.F7E4.647E7AA1;path=/;Secure

port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php

0.0.0.0

0 B

URL GET
port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
IP
0.0.0.0:0
ASN
#0

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerLet's Encrypt
Subjectcodeanyapp.com
Fingerprint27:C0:22:A5:D9:29:06:F4:C3:9F:46:BB:A7:23:E2:F0:6B:54:42:AD
ValidityFri, 21 Apr 2023 16:11:36 GMT - Thu, 20 Jul 2023 16:11:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	SpareBank 1

HTTP Headers

GET /sp/nor/cc.php HTTP/1.1
Host: port-3000-php-flaar287-essence9955619004.codeanyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff

193.212.175.209

200 OK

33 kB

URL GET HTTP/1.1
www.sparebank1.no/etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff
IP
193.212.175.209:443
ASN
#2119 Telenor Norge AS

Requested by
https://port-3000-php-flaar287-essence9955619004.codeanyapp.com/sp/nor/cc.php
Certificate
IssuerDigiCert Inc
Subjectsparebank1.no
FingerprintF8:D0:30:F1:16:E3:3B:3A:11:8E:79:BD:07:DB:E9:78:DF:D1:C7:36
ValidityTue, 10 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 46408, version 0.0\012- data
Size
33 kB (32768 bytes)
Hash
9b7e691093d5ca9c8eae3e80211e62e3
f6038cdf3ab72e570cd3ec83dfb8196e8e279f78
86479556655240a31077e50fb4c79ef2f291fd2c76bed33af8577bba6b14806d

HTTP Headers

GET /etc.clientlibs/settings/wcm/designs/sb1/nettsider/clientlib_base/resources/fonts/SpareBank1-Regular-Web.woff HTTP/1.1
Host: www.sparebank1.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.sparebank1.no/
Origin: https://port-3000-php-flaar287-essence9955619004.codeanyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 00:15:29 GMT
Server: Apache
Last-Modified: Mon, 05 Jun 2023 04:14:12 GMT
Accept-Ranges: bytes
Content-Length: 46408
Cache-Control: max-age=604800
Expires: Tue, 13 Jun 2023 00:15:29 GMT
Vary: Accept-Encoding,User-Agent
ETag: "b548-5fd5a228e0d51-gzip"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.ytimg.com vimeo.com *.vimeo.com www.youtube.com www.google.com www.google.no assets.adobedtm.com sparebank1.d3.sc.omtrdc.net *.cicero.no *.sparebank1.no *.googletagmanager.com cdn.tt.omtrdc.net activitymap.adobe.com; style-src 'self' 'unsafe-inline' *.sparebank1.no www.youtube.com services-test.cicero.no services.cicero.no translate.googleapis.com; img-src 'self' *.ytimg.com secure.adnxs.com track.adform.net *.doubleclick.net assets.adobedtm.com sparebank1.d3.sc.omtrdc.net alliansesamarbeidets.tt.omtrdc.net cm.everesttech.net www.facebook.com *.sparebank1.no *.boost.ai www.google.no www.google.com *.demdex.net www.googletagmanager.com www.gstatic.com data:; connect-src 'self' *.cicero.no *.demdex.net *.omtrdc.net *.brreg.no *.sparebank1.no publish.ne.cision.com translate.googleapis.com edge.adobedc.net; font-src 'self' *.sparebank1.no services-test.cicero.no services.cicero.no data:; media-src 'self'; frame-ancestors 'self'; frame-src 'self' snnfinans.no sdk.companywebcast.com candidate.hr-manager.net ir.oms.no channel.royalcast.com www.sr-finans.no *.sparebank1.no lt.morningstar.com www.youtube.com vimeo.com *.vimeo.com assets.adobedtm.com *.demdex.net sparebank1.demdex.net www.sign.nets.eu ir.asp.manamind.com www.sb1finans.no www.snnfinans.no dbsnn.no www.googletagmanager.com *.doubleclick.net www.ident.nets.eu www.sb1fo.no www.webcruiter.no *.easycruit.com sb1mobilbank://event www.sign-preprod1.nets.eu nam11.safelinks.protection.outlook.com nordmore.pameldingssystem.no players.brightcove.net agreeable-forest-0b9a11903.1.azurestaticapps.net activitymap.adobe.com pr.globenewswire.com signant.no; report-uri /bin/logservlet
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: font/woff
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: https://mobilbank-pm.sparebank1.no
Set-Cookie: DSESSIONID=5B5A2A9A.FC01.647E7AA0;domain=.sparebank1.no;path=/;Secure
cxm=1-2|ZH56p; path=/; HttpOnly; Secure

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (58)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN