ocsp.pki.goog/gts1c3
471 B IP
Hash 950ff67613f2dfd1f82f70f3a665ec46
20fbaa406fada3917e0ae712cff4dc1fc0c2456a
2dbf0ce9a6a1afbb309bd6ec8152fa193e662b119097c6c2b1933c855d86dee4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 03 Oct 2023 13:14:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.co.uk/amp/s/tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw=
302 Found 334 B URL User Request GET HTTP/2 www.google.co.uk/amp/s/tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw=
IP
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.co.uk
Fingerprint74:54:9F:6A:CB:12:BC:A5:64:E8:AC:10:AC:11:93:23:AC:48:A8:32
ValidityMon, 04 Sep 2023 08:23:00 GMT - Mon, 27 Nov 2023 08:22:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e69de1f4be565a6b07cea1d343f0c638
6570da03f2c3d4321fa0c1394b9ea42dc56af7fb
fd7043dea30d86515869e78e1b4db4905bbfd14f4614ce342697a1cfea578c53
GET /amp/s/tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw= HTTP/1.1
Host: www.google.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw=
cache-control: private
x-robots-tag: noindex
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-H6o7b8ZxwvoBcx_PrlleCw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Tue, 03 Oct 2023 13:14:21 GMT
server: gws
content-length: 334
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: __Secure-ENID=15.SE=O8XcdeHSyihnPBaq3AuFTjOQPFo3l2le1J31xL28lXI_-ykZgSFd4xoY_QCh-CQR8RF2nXAh3AMIjyoimFQPMgNWBmb-XMk7oN_Gy0s1svnvEpsNSpPJpIF1ahYQqYzDNvai6CIXtLPnH1_-rYDFtwTr914dDfwaVLwlN81_YLU; expires=Sat, 02-Nov-2024 05:32:39 GMT; path=/; domain=.google.co.uk; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+496; expires=Thu, 02-Oct-2025 13:14:21 GMT; path=/; domain=.google.co.uk; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 4be88d745c27ba99a2295dac22c75cbd
48fa833e80b71e935f6d4ba14ee3af635645fc39
a07197ea730b325416f3a79ababa6d337ed43bcd0db53b95f38927f63aa7472f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 03 Oct 2023 13:14:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw=
200 OK 0 B URL User Request GET HTTP/2 tknudcmos.imoveisceleste.com.br/206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw=
IP
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.imoveisceleste.com.br
Fingerprint09:71:61:3F:C9:53:D0:A2:31:52:93:D9:33:B0:D4:CA:0A:AC:6F:25
ValidityThu, 21 Sep 2023 18:25:13 GMT - Wed, 20 Dec 2023 18:25:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /206532-f3ae1e93f5f0671e75ae22cb07aa41c2-----/524666/vxhea5lx/a2xhbnRlbnNlcnZpY2VAaXJpcy1vbmUubmw= HTTP/1.1
Host: tknudcmos.imoveisceleste.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
refresh: 0;url=https://fjordside.no/Mklantenservice@iris-one.nl
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 03 Oct 2023 13:14:21 GMT
server: Apache
X-Firefox-Spdy: h2
fjordside.no/boot/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e97
200 OK 51 kB URL GET HTTP/3 fjordside.no/boot/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e97
IP
Requested by https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /boot/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e97 HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Cookie: cf_clearance=phLvMQUbNSBLDUuu7cj6parSbibWLCUtSlUR.Upbsvk-1696338862-0-1-69b0ef05.7e78ddc4.3eb1b0e5-160.0.0; PHPSESSID=6bf423a2785ab03eab878abe369079b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 10 Oct 2023 13:14:26 GMT
last-modified: Mon, 02 Oct 2023 19:35:11 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qff481MWqJd%2FzjOAH%2Bsq1B04d88rjpWgi%2BAcwZQVSW4EEf1GgwgkmYhDA5JlahGScMcTRdIfLgQAU3l0mdueVLIlFAz4N2ApNRZ3smrx8JqBFNFC9zHg%2Fc5z8RJLi8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 810572bcac5956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fjordside.no/jm/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e98
200 OK 7.5 kB URL GET HTTP/3 fjordside.no/jm/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e98
IP
Requested by https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
File type ASCII text, with very long lines (7546), with no line terminators
Hash 19692a2e13ab09d18dbe07dd646c022a
f99d27122f00b497773febb2ab0e24ca764266b6
c8ef5ba744461fb197c95cc0c1a73054cbc9c50b12669f3290038beaf1a382db
GET /jm/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e98 HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Cookie: cf_clearance=phLvMQUbNSBLDUuu7cj6parSbibWLCUtSlUR.Upbsvk-1696338862-0-1-69b0ef05.7e78ddc4.3eb1b0e5-160.0.0; PHPSESSID=6bf423a2785ab03eab878abe369079b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 10 Oct 2023 13:14:26 GMT
last-modified: Mon, 02 Oct 2023 19:35:11 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=deWocfEqKnjnalbHL8CMrME9mE%2F8OUIXsV%2Bru30Q0oPXgAr7J%2BZoBPtIdMz%2BhV9R1pxzQTQhlfHKy7g8AvEzd3IBtrN5%2BRWLAFkF2EdDMuBa1j38D9TB8lc7LjmjyHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 810572bcac5c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fjordside.no/Mklantenservice@iris-one.nl
302 Found 6.7 kB URL User Request POST HTTP/3 fjordside.no/Mklantenservice@iris-one.nl
IP
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
POST /Mklantenservice@iris-one.nl HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fjordside.no/Mklantenservice@iris-one.nl?__cf_chl_tk=SOBai3jSsJmGxBWD8mjqbusVg84WWX3Kk7VCtl.yJCY-1696338862-0-gaNycGzNC-U
Content-Type: application/x-www-form-urlencoded
Content-Length: 3446
Origin: https://fjordside.no
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: text/html; charset=UTF-8
location: ./beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
set-cookie: cf_clearance=phLvMQUbNSBLDUuu7cj6parSbibWLCUtSlUR.Upbsvk-1696338862-0-1-69b0ef05.7e78ddc4.3eb1b0e5-160.0.0; path=/; expires=Wed, 02-Oct-24 13:14:25 GMT; domain=.fjordside.no; HttpOnly; Secure; SameSite=None
PHPSESSID=6bf423a2785ab03eab878abe369079b2; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uRm5XiUsNw1i02AU9hsp054zTKn0X0PT5aS4P0AKozCxmNGYYn31%2FgUE8WrqxOXZGHqIhldsobePybUZd3mfOciMNPs80n6chbPdB0kUaFfDbn4y8J3%2BckuxkkFQmGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 810572b7f81d56a2-OSL
alt-svc: h3=":443"; ma=86400
fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
200 OK 6.7 kB URL User Request GET HTTP/3 fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
IP
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6732), with no line terminators
Hash d0ff64f4ccadce1314ad266cb2bfe14e
d6fb5bae47731b1e018420c0fc22ef1b6a67f475
374f45d3f7ce69dc33c31da7ff19ffcd53680567f93a6b83d37997506172e4f6
GET /beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630 HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fjordside.no/Mklantenservice@iris-one.nl?__cf_chl_tk=SOBai3jSsJmGxBWD8mjqbusVg84WWX3Kk7VCtl.yJCY-1696338862-0-gaNycGzNC-U
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=phLvMQUbNSBLDUuu7cj6parSbibWLCUtSlUR.Upbsvk-1696338862-0-1-69b0ef05.7e78ddc4.3eb1b0e5-160.0.0; PHPSESSID=6bf423a2785ab03eab878abe369079b2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAQv9tixMUlBLKlBlW%2BjbyA%2F%2BVpj6v33jwBtExY2OaNmk1fBV1YQxbpsBmMLH3sTCvgjyHYXU%2FzfOQK3a4t%2BsW1y3kp0S276EdkMkETTWM99jQdeegXgCIQ%2FhQ0nDMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 810572bb4b2456a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios/dist/axios.min.js
302 Found 32 kB URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js
IP
Requested by https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fjordside.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.5.1/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HBTTP42TP4F7MJ1775563T0V-arn
cf-cache-status: HIT
age: 123
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 810572bcdd58b4eb-OSL
X-Firefox-Spdy: h2
fjordside.no/jq/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e94
200 OK 86 kB URL GET HTTP/3 fjordside.no/jq/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e94
IP
Requested by https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /jq/d9fe39f68703cf438b89ab3fe108b6cd651c13b281e94 HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Cookie: cf_clearance=phLvMQUbNSBLDUuu7cj6parSbibWLCUtSlUR.Upbsvk-1696338862-0-1-69b0ef05.7e78ddc4.3eb1b0e5-160.0.0; PHPSESSID=6bf423a2785ab03eab878abe369079b2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 10 Oct 2023 13:14:26 GMT
last-modified: Mon, 02 Oct 2023 19:35:11 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mpTXV%2Fw%2FOrHJHiw7m8bz9UuuJHy6Go7Iy6Y2JNsgJqfreO5whbdurmfDRFmxS%2FkJ9mX7BYJ%2FOiw56raGTAbWzmYzj%2Bvx9R8TOdpDCB1ZmZprpDJ3wylAG7fQXWC8cic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 810572bc9c5756a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios@1.5.1/dist/axios.min.js
200 OK 32 kB URL GET HTTP/2 unpkg.com/axios@1.5.1/dist/axios.min.js
IP
Requested by https://fjordside.no/beebb091955c06fa68b3eb8afc0bae51651c13b26862ePASbeebb091955c06fa68b3eb8afc0bae51651c13b268630
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (32298)
Hash b4e8e6b83fc60626095def7101d7e380
4f8ac96d204d91d68150a702ba03b6ebe17656a5
fd688b0ff9f17567ad22bf34a05ed17ee78750b9965418309c821eb3f55cc38f
GET /axios@1.5.1/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fjordside.no/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 03 Oct 2023 13:14:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7e51-T4rJbSBNkdaBUKcCugO26+F2VqU"
via: 1.1 fly.io
fly-request-id: 01HB9C4VK0YVC7B1781H8FGGEK-fra
cf-cache-status: HIT
age: 585794
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 810572bced67b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
fjordside.no/Mklantenservice@iris-one.nl
403 Forbidden 6.2 kB URL User Request GET HTTP/2 fjordside.no/Mklantenservice@iris-one.nl
IP
Certificate IssuerGoogle Trust Services LLC
Subjectfjordside.no
FingerprintCE:17:B1:18:77:42:BC:4A:2C:7F:BB:39:FF:1A:43:54:B2:65:A7:63
ValiditySat, 30 Sep 2023 19:25:00 GMT - Fri, 29 Dec 2023 19:24:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6277), with no line terminators
Hash 47508d73baf2a11fcab2360b0827047d
9c76aac5549137d26d4095555c9dc500c4c119d6
08951c4224098e4b709e6b6dca21c7975b2f0a02f306d14e1b71020d7724d34f
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /Mklantenservice@iris-one.nl HTTP/1.1
Host: fjordside.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 03 Oct 2023 13:14:22 GMT
content-type: text/html; charset=UTF-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JpQiMT2PpfuIPjruj%2BNLOZw%2FRYXK50Lk7PLpFekMUMGh9Pr4L4k73jSess0YIZ9s9oFuXEdaSm9B6Bo2FBUmgDAAWDRclV2WuZROsndTRKLkLaU4Itflcx4nVYsLbg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 810572a11f0b56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
142.250.74.99
104.16.126.175