Report - finansforbundet.filemail.com/d/yhqywgdkxzccgdp

Report Overview

Visited public
2025-03-21 07:30:27
Tags
URL
finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Finishing URL
finansforbundet.filemail.com/d/yhqywgdkxzccgdp
IP / ASN
178.21.23.181
#50673 Serverius Holding B.V.
Title
Finansforbundet - Presentasjoner vårkonferansen 2025

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
api-iam.intercom.io	2892	2011-08-15	2018-08-02	2025-03-20	1.1 kB	6.7 kB	34.233.102.105
www.google.com	7	1997-09-15	2015-05-10	2025-03-19	2.7 kB	77 kB	142.250.74.68
js.intercomcdn.com	2440	2013-04-25	2020-02-19	2025-03-20	3.1 kB	4.0 MB	54.240.174.98
3009.filemail.com	unknown	2003-01-19	2025-03-21	2025-03-21	5.5 kB	174 kB	193.30.119.109
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-03-19	2.4 kB	1.8 MB	142.250.74.99
127.0.0.1	unknown	unknown	No data	No data	3.7 kB	0 B	0.0.0.0
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-03-19	450 B	296 kB	142.250.74.136
filemailprod.blob.core.windows.net	934652	1995-08-10	2017-01-29	2025-03-14	499 B	8.0 kB	20.60.27.132
analytics.filemail.com	unknown	2003-01-19	2023-05-12	2025-03-14	1.4 kB	120 kB	20.82.124.160
filemail.b-cdn.net	unknown	2016-04-25	2024-09-28	2025-03-17	546 B	158 kB	194.242.11.186
finansforbundet.filemail.com	unknown	2003-01-19	2025-03-21	2025-03-21	9.2 kB	1.4 MB	178.21.23.181
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-03-19	2.2 kB	81 kB	142.250.74.35
nexus-websocket-a.intercom.io	2137	2011-08-15	2015-06-26	2025-03-20	755 B	283 B	35.174.127.31
widget.intercom.io	2417	2011-08-15	2020-07-20	2025-03-20	435 B	7.5 kB	54.240.174.107

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed
2025-03-21	medium	127.0.0.1	Sinkholed

ThreatFox

No alerts detected

JavaScript (106)

	URL	From	Size	First Seen	Last Seen
	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	Eval	64 B	2025-03-16	2025-03-22
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-03-16 08:07 Last Seen2025-03-22 06:42 Times Seen650 Hash bd83e352361e21457660bb3d05de24f6 8fc50e512bf8e4546467245967908b349ccf8052 435ef8a4fa171399a6057a9d19f360bdde4e850c1cea87ec4e897d5a71bfb61b Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	95 kB	2025-03-21	2025-03-21
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-21 00:02 Last Seen2025-03-21 14:01 Times Seen4 Hash 5907447101a294a05e8bbc872cc10a27 aa1d919eec53e4814560c3fe3571f05c1f98e9b7 2a633fc739ee1735b2d4f979b81b9f7aac51f16136a5b2770ec5367919410b00 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	510 B	2025-01-02	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2025-01-02 13:20 Last Seen2025-04-16 11:43 Times Seen23 Hash 913a81feac7260e66bd13807e20d23df 1c5fd73a9853b41ace815279bc2f9341b007b357 34987a321d17cdfdc01cd34421104d873db6045b385d86e1ee913f8ac200fc70 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	495 B	2025-01-02	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2025-01-02 13:20 Last Seen2025-04-16 11:43 Times Seen23 Hash 4dcdd5ff4fe9f33fa713652cf3bb3d0d baedc65f552ded4eb5efc6313365051ab4bffbbc b7c6df5ba455e038d90ca3159a43cea9718ea71e307d575920815199f997f54f Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	505 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 10cfe9ee888d806f29b7879362c65d26 00834b571935a535e0b7cdaaf85ae5f36f55b944 80e072be3e72ef5c0ba96f70b3c931478448c33c13e36f178bd15af3ae99a2f3 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	462 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash fcae363f252360ff89ad326b0f87ec0d 22c581b48bae01b7a5a5efff34644bc55dab9cc1 2e05abc30a5431f36099dcf7a89bd54b9c836aebc282477c69dc74c9c7708930 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	461 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 3807e0b68ae4d83e440b4e5be6258972 e3541c6ff8a330bc0b6e8cc08dd8ae5d256145f1 3a7851b74a831b518423c41033d1a79ac89b50c1ad6d9bb2f8c7556bb091b6c5 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	536 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash b0175df6285a396847acb7e548cdddce 8f1dacace161beb077da95025587e0e5fc700f2c e2544527724842717baa3a299ba43ca6d36e431fa2c18e6ed59e52831c6fd1ad Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	586 B	2025-03-21	2025-03-21
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2025-03-21 07:30 Last Seen2025-03-21 07:30 Times Seen1 Hash 05d527535f9b782ed12770d2d7a75990 80e6732cac5b086886ab57f2d6fda4547ecef9e1 da48940200f01a6036d5dd380124f9476eff8f5a6eb9342db56ce332c6264d44 Loading...

	js.intercomcdn.com/vendor.370d3c70.js	ScriptElement	672 kB	2025-03-10	2025-03-24
Pretty URL js.intercomcdn.com/vendor.370d3c70.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-10 13:32 Last Seen2025-03-24 16:24 Times Seen1640 Hash 0370ff7829243474c67252498c379b53 606e51601d0cf558369ce77f8f64da32950c4a8f c65fc16c3237b0820df080e77c05cf6e8e568561abd2c738afaeb3b72b6d72cd Loading...

	js.intercomcdn.com/frame.512ab2ca.js	ScriptElement	926 kB	2025-03-20	2025-03-21
Pretty URL js.intercomcdn.com/frame.512ab2ca.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 17:52 Last Seen2025-03-21 09:41 Times Seen27 Hash ce51876983cb2506bcecd23b0188b2ab e21c344640d3fd5ee571bff85e1cf46088834ae3 d0d4050fe3234edbe514a2747c7644e4e2b536b7fd359e4a95af99ef11d6c0c4 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	528 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 155c9864c53be5d6ef39e8dc8664645f 660bbbcf3c11a3d1df1bc3f04e57c36e4726d21b 4bfc988bae7627809dc83de70c3554ad3410e73cc17673f3f4e9d7f1883a8817 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	620 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen77 Hash 2e7a332b20fa07d3d9a643f91781cbe4 5c4cf33e9ccd7db678288badd9d8bce64cd7f613 aad920f8eee3710ce01b3344520bf166f4faf9f87e4ccf4e8d2921f5012ee260 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	594 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash a31beaee4972c6e159c2d925f2820e53 4c07fef036c86acf502b6dda27ab74b559ba08d0 93892d6401dfd0e598cbb389bf938d30494e0068881bc44270a860527d3e2a60 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	537 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash 40f1842d0d5cdfd6c11896ac2bffdd82 abcae46c8db5669761e0dd19e4e7801f188b7cb9 1c0b34ba11d0bc884ceb66da8796e1da5ad12cb3aca9d34d752a0039b679097d Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	495 B	2025-01-02	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2025-01-02 13:20 Last Seen2025-04-16 11:43 Times Seen23 Hash da22efcbaf90eced9be463fe52450c12 a9dc1fe23aa1491dbfe24910579727179fb6328f 570ab18b50c6a2453aebdc8246a334631d05e286be45cfc577c27368733a9c6d Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	433 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 2743a466a2dc6b5307968e29b4642061 b04b99e9d3cd293f121ee2f64512d960a272aed2 2cdade8382ea24a43d92c632e3f95e2deb587f4517f0694dbedd593c746a0030 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	1.4 kB	2023-04-01	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:40 Last Seen2025-06-12 08:36 Times Seen103 Hash 48ad489a73c75b04e4538cd30cecd122 8a32853099e7cc53a08ed4a3b33aefd300db3f74 1236559bffac224d81c6ee94aa75cb7fb1bc691f8df88768f04fceee30d92fde Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	779 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash d94cb56db0af5c44f6b78f0d4d7b0db0 3e987ccfd89e77d1b746fbdcda1a737a33470413 ddb06790e56107db12deab24c23831465aa492187508470b87d82549356c04ac Loading...

	js.intercomcdn.com/vendors~app.10d78236.js	ScriptElement	544 kB	2025-03-19	2025-03-24
Pretty URL js.intercomcdn.com/vendors~app.10d78236.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-19 09:47 Last Seen2025-03-24 12:51 Times Seen125 Hash 13ded18cd0356f93d7c9b63138589caa 797c790dd05cf1a0c69fa3a5a66fc1a9b43bcfa7 23cc87d34c370452be3485e58a431ef8ebe1964c4a2c4446b9fcfbb67c27b0d4 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	321 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash f2eff0c91c79602668d008bf17f3b915 1c663c0fc01407c37736fda34d4f1c74d7e79a94 852829beb518179370782369fb0cf73e1b2e92329072e7e602daecd4ff30a328 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	356 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash 949a8ce2f3adbbfe9ca32267a7428f2d 836ba4f0b20242ebdf38bf18adf3b23a832aeb55 2a68c600405a5f4820f9591c0225f6db43f9173831d0da92dff025fde994cbd4 Loading...

	www.google.com/recaptcha/api.js?render=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&onload=__recaptchaCallback	ScriptElement	1.0 kB	2025-03-14	2025-03-21
Pretty URL www.google.com/recaptcha/api.js?render=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&onload=__recaptchaCallback IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-14 02:43 Last Seen2025-03-21 07:30 Times Seen10 Hash 2ed89f00024c2b18682da8f507d6697a 2f6c4d861737de3eb7068e1eedcbed7660e3bc22 a1879cc883bc51cec63ea96bfa69cf15838c1145ce0f05e70c5f1c37042008c3 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	513 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 94752a33c772f7ead1a88c70d6f5ed64 f891b2d3b8cf8e10b90829f321078ce57c0dec71 91a97f9c088bc2dc0350a5713544011f77145eab11315f093978bbeb988f4462 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	658 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash b658dc70e95225b8a1145b1b90406f4a c9adcc327ccf93a3754843228d30b25d40a6f0d4 51ed71f9bb81d9428fedd0b61037bb25d28da19368fb5de13c4a4e842e45a981 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	712 B	2024-02-20	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-20 11:07 Last Seen2025-06-12 08:36 Times Seen70 Hash 44dffe3ec3de61905c17c2c3db617573 6a2f24bd391f0ef2ad3c2ccd28a4fe55f1a61354 5f8a13e3f6e9ddc7ea418cfdcc60ab9cbbbe7b924aaecb2069a83de0a6089306 Loading...

	finansforbundet.filemail.com/bundle/js/common_master-bluemaster_common-anonymous_downloadslim-downloadslim/803b8ab26495d90b680363a5fc8287c0258c37092a23750bfedf56b7e4d8	ScriptElement	576 kB	2025-03-21	2025-03-21
Pretty URL finansforbundet.filemail.com/bundle/js/common_master-bluemaster_common-anonymous_downloadslim-downloadslim/803b8ab26495d90b680363a5fc8287c0258c37092a23750bfedf56b7e4d8 IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-21 00:02 Last Seen2025-03-21 14:01 Times Seen4 Hash bcf05b8d9af77917692fb7601c90cb9b 7c40e2ebabb8f3fae41875f1bb42a65c790f1d6e 2435618df81e74c2c88497fa6087d489da3dcd2c6d525970c1fbf1a473e40aa0 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	533 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 472348fbb0c33a66377a65001a6a87e8 c9b563e3f933af2f90ac2c41dfeb666590b7f1a1 883ee9add0daab489071d52bb153e9122fbb3cfb76f35fa150c009ca9d0115d9 Loading...

	www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js	ScriptElement	559 kB	2025-03-11	2025-05-15
Pretty URL www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 03:43 Last Seen2025-05-15 13:28 Times Seen4256 Hash 6a36163aa0bbf83ab5d1c9fe0ff046c7 b5d6c2eb38480243e8527d29030a895e4558f0b4 430aa09e2aec35f41afac94b13f2550d632f4d12d14549ad3344cf29aa9f40a2 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	531 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 95c5973a55223042e18e5b25b568c6ca 74623fc1a58d10288fbc93b0b39504284d93f77a bdb05b42572147d5907d094a5d315d0690c228102561023b55972c32485280d7 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	662 B	2023-05-01	2025-04-08
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-05-01 22:45 Last Seen2025-04-08 07:41 Times Seen22 Hash f55f345dffdffcf74e49de8f9a567449 8d4056de6e5973c4f20fb71c1d8723b3e7933032 c3020cf25098eedfdd8945ca35ebc65cdb8452f233f7286ca50bf091149820cc Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	492 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 11:04 Last Seen2025-06-12 08:36 Times Seen188 Hash 154d8a68b57507e06605170a2159f6b5 82e553c5dd79b5c5ca8ab669d4ecc4002edeaef2 351d5f89ea07b5bbe3247a4e3ed715aa1793e7bbae2e2aa88aa2b8a18717837a Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	379 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 1cc3360c31c793559ca864f973d588aa 86051501561d06ad4fc7b34a38b58340052be9e9 352b4719e539fd0bca22619d19b3093656c80d18ebd10526d6be7442e4b54409 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	504 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash 428a141ff5f333c5675fef16a542e6fd 95135fc62dcced62ebdca494b35e8327d14763d6 c90c0f4e17762113f5ce6857ba615614fc9988a7b4901c7af843f7aff617d4d9 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	545 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash eb828aaa9088124e84dd2ed4a53c54ff 93a5106bc99a8275b34cb19f23b34fb1d8b4e4c9 2b8cafb1d31337d19693602c52710c8041534b42c80dc1a58e5322584e6ca723 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	676 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 2ea08ac5394cb3d9dc7b4709c1cb3bf7 258046ba9026bdd297baf0da7c9269c65f69fe05 eeb2f86c5b994a12a6610925f66a9a446d1866b2c89313092890d4d012d2f9c0 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	525 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash d639b26fbad2100ea8d80d17a859d1e0 b9c64b25d00d5c4c5c39e529a976bb5b7d4e6fcf af00fc57aca2f8c441451d10cbe3bead82682b2d96cc3b41620156e8cbdeff75 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	582 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen76 Hash 85ae5666a66fcc9ec9360707eda481bd 64ec449e641b1cd33e73a2c3a2c99b1fe0f48965 8361d036bfce022dc107c695bfbbcbd4b8becebf0a065541b197404cacb0db83 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	345 B	2024-01-23	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2024-01-23 19:44 Last Seen2025-04-16 11:43 Times Seen57 Hash 9a30c2041e281b4a6d0f31d5ab8c7ece 6e19837eda88c2b962170577f07b7e1772fdda19 0d09ee82bf7fca81fe74d0224b4baafa4685792aa37eb09f8f470024bdc46313 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	462 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash e9f204ef7803e4aa77d196c9a7c9d2a4 05fbf75854d39c948c0a18d50e882daf2214042f 565bb6e0b332f1dbb9beb0b31853af2342a0495fb3046239de9218b1c2b17561 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	416 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 99230c4900917f7de0d0a36f9985320d 456fd61381d727c6fa2f4840536089930183f5ce f64e9d3c181fe132a719db45e5881c366b91d2fea5c6059dceb49eff9bc0399e Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	Eval	22 B	2025-03-16	2025-03-22
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-03-16 08:07 Last Seen2025-03-22 06:42 Times Seen651 Hash 0a2656e60942e21d14af477e074e5761 70e0f7d5ed6cd2468f1147bbf9e0afc9133614c4 6482bbdd87ecdf7d6cd1bd90dbbb050ba3d0a3f052052779fa39e8f92ac3808e Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	534 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 1bcdb264fcbf652fd0805c111ace7be1 54ff6f0f82b19ff80ec0dde778c49f7fecae2afb a01af9034e2985d41068df10afd6458d18dcc2aaf3d95082fff655b63742efcb Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	533 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 795cc5005328f55d1b247dab55e0811e 125fbf8a37ce72121864c470ccec5555be7f79b7 21221c7c39377b8601cb7ae68b0d118815a24dbc9bd586e4d26f4e93a74ba838 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	484 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash c29b1932ae650bf8d998959f03eaea61 ba154e18fe803542b33aacc6baec5856ca382d2b e80145703cb74192739b6bf4c07fe4675974976f99b617cc8b20c4f44879f25f Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	537 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash ed1d8af6caab3e94c83866269970642d 1f1b4242ad665bbfe09ea405a558635a75d5c7a8 447442c0082e3d69c27ce9df423e81909ae44414ed7e669dfeea4dec41d92320 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	650 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash cc04b1aca12f621beac1b706ab07f759 07c52d7b573d4f1e781e0c3c550517d12e176611 3a247f50caac0ded954e2b064ef53b5bae409874a34398852275138086c0ac90 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	1.2 kB	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 43c4b9141815b038e4a6f54af42923e6 63ee1b6ee7dd53f955003ea2359a42aaedd2fd6c cd251b0edd4c407dab128eb093727d7bd5fc10bd3609b73a5b87a7d6cd559965 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	562 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash 6ae1048649b93cd381feff341a2c16e0 e975383542a224af7b4790076144f6dd0014ef41 0fe2a4db06aefb2ac65ec6bcafbf2703ad9ab2fb9cff9f7100d0b5df9d018637 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	Eval	22 B	2025-03-16	2025-03-22
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-03-16 08:07 Last Seen2025-03-22 06:42 Times Seen651 Hash b9a4502543a0d63d7a2b53e2ed078008 f5f0e653665cb9cfbd091d0591958af96b39ae5e 51df97fd86b1e26f2b2cdbc5a67f42b48719dc05ec612a5b83fa266059a78cf6 Loading...

	js.intercomcdn.com/vendors~app~tooltips.07c9076a.js	ScriptElement	734 kB	2025-01-16	2025-06-14
Pretty URL js.intercomcdn.com/vendors~app~tooltips.07c9076a.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-16 17:41 Last Seen2025-06-14 13:36 Times Seen1807 Hash d775eb0cc08b1ae49876fcd3e923d584 0a3433b4c711a1c4cd9e1e3397fb377f9b9b845d ad991c1a7ef9fa5025be75fcd94e0c0a7d2b5ea40975f6d7f8f1a77d5a3c1527 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	368 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 29ada298c1910d13e0859e374990d7c6 56381bd35ff347258e1c5b9c6174fda546ca699f cb81a3867eac337d37d975b36122d12abf731a762f61fcbac46e7af62fa5f71d Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	668 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen76 Hash 85c4a70d1051cf7268e9006952979cdf 36ad4a815fd8beffe02486e2bed5ab066759fade 8f519a676add53f86ad079542f80e815d7d3a6c3699ac97e4dd51881f93d7d25 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	535 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash caf4175c795ef8f9aaeb3520a4e7bbb0 12d640a9019f4ba7ebdb6ca2c8d012dc6c1678fc 04320161b49f619c428e3996b8224b7dc61d6130668530fe9e5776e3c7c51d00 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	535 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 82c0469b02d0824f12e20aa7a1613bd9 e8d8ac55eebc5e063fd4c1ad7ad1846d5c2eefba 30c7e4b4c5c354e211cf09901976d157f1a764f44cd68e40b7d9ed67198f26a8 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	531 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash ba6bf8d176ee06bcd1da07b84cedb05e e5c3eafa17f08bfbcd47eee81e37ed92bf5ca383 d3271abd43d40377384cf8a24c95d38885bc69d8b8cb7781f1870c2b0ffbcae3 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	894 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 9feeaafa0b3a9e39a78050f51d51b973 dbdf91cee6feae64a2fd86ea1fd1342c915e5ac4 55b6ce48f48b5cafe26c8e1f58e632e8a2fb74bb41a97abb98ded2df1fba06cf Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	635 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 111bf3a2005de0f71f92d79c04683a4d 55f59aee6c010f0363ac8fe63511074eb4aa90ce 190c7c52c6392aa11de28fa9a0d101cd28eff717d3f6e4a65a59df451e09bacc Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	632 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen27 Hash 8b62d0a8a6ad4d47c621a29ba9132b63 30dfb0dc19c99ec8ac5fd5805929fa0b4fcdb06a dbeacf3308ac4dcdd2a6daafe111abe27cfc7e11494b593a2da84a44b83bfa61 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	26 B	2023-04-11	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13 Last Seen2025-06-14 14:03 Times Seen130185 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	447 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 1668f0d640678d32e3ce7194f672ade9 e86b7d96412fe3f9c61bc3643883cc0d606d5872 7b717c223fdb78a68740d7f04fc97d5f576057a70a0cc03b88a104a933fb32c8 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Eval	7 B	2023-03-07	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-14 14:36 Times Seen33121 Hash f0ffd3b7c2574ac324603ed00488c850 623e76c36aa2a886542011e28412cc761d7ceb01 c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Eval	7 B	2023-03-07	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by eval Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-14 14:36 Times Seen33121 Hash f0ffd3b7c2574ac324603ed00488c850 623e76c36aa2a886542011e28412cc761d7ceb01 c4d0cf241a1bfa1c8bf4cf24e8f89d2ab786a284a39adb2fc8df7ea14e73c154 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	15 B	2023-03-14	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 15:18 Last Seen2025-06-12 08:36 Times Seen86 Hash b1f725034ff4a638bf362506ed377021 19164d84d30ca5e62cd059a6fd8b6cd3df7dd620 db5027010009515a23a296911a6463b5cc4cc65f482941c7354eff81ad4041b7 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	663 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 79e2487a43ab772f4f07d001d1a456a8 cefc5b4de205bbdf5335f6b709ba78a6160c3779 12b0609fd9fae47a463da8971c1f484063b1d2971b4aad645688b7fbc8d20d22 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	755 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash dcb008c1b5dea569ee27dd60ae666563 ae1711a3e41dc444ae8c597d307a87f5c3df4a5b 54e1fa47390bb084193060c8c73f200fe18f5509c2b75b910805318ffc7589e0 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	453 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 6d4d9329ee678c27ab5e93d336469354 e324861440b085e61a62a8170251ead9db21e1ce 443d150eb865420e6c8304d662ac05b53bb01bfc0e3699d7e429e90b0496ac37 Loading...

	www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js	ScriptElement	559 kB	2025-03-11	2025-05-15
Pretty URL www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 03:43 Last Seen2025-05-15 13:28 Times Seen4256 Hash 6a36163aa0bbf83ab5d1c9fe0ff046c7 b5d6c2eb38480243e8527d29030a895e4558f0b4 430aa09e2aec35f41afac94b13f2550d632f4d12d14549ad3344cf29aa9f40a2 Loading...

	js.intercomcdn.com/launcher-discovery.a1869a1c.js	ScriptElement	8.6 kB	2024-07-03	2025-04-21
Pretty URL js.intercomcdn.com/launcher-discovery.a1869a1c.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-03 19:06 Last Seen2025-04-21 18:17 Times Seen798 Hash ca9fc4173d68fe03b79f6d4f11efadb4 16166648209dbc7f3d4221206a1877636d0c63da a216381567200140f711ef48ce3c98d3b33781ce1f91183b0fcd8af712d350df Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	303 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 731bc81dbf09b8e54f38f00cb957d203 a1ca09d0f2fd91e0a8562aaa4fb76c5f4d3fe971 fda79166392dcb73806ae28093ba57da2f9bc1ef48bafd0f4df7906b47db1926 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	510 B	2025-01-02	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2025-01-02 13:20 Last Seen2025-04-16 11:43 Times Seen23 Hash 2db4074a03d8eee225aefd1736058442 b84c239653c8a78e33b18078782f5b0852d94bbb df73dd17422c56473b70beca775fce3384981c62291bb68f6da9bdf39a1a0ec6 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	387 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen76 Hash f79ee4c11abd9c5ec6f9f1b4baf0a83f 1627e97980e54aa402a92f315abc2e020c6ccd03 dc2963d9e626d3d69ea030eb78a9bc4c25fce02580c0a54a5c5da5d71db487fe Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	380 B	2023-05-01	2025-04-08
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-05-01 22:45 Last Seen2025-04-08 07:41 Times Seen22 Hash 74cb3ad63dc3c7177c1072d8d0588ed8 239ba2f23fa7536efc0fb2aef87d3cd0e492f26f 2c0cc2b3c322e1119f2a2071fce44445c63cd5021dd3606159058eccf0d883ca Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	459 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash 62bce67c337d898495e85febdab5872e 97bbaf4b71159a9d929c966ca4a2ebd948c41c98 a060798874b27112ae3308eb8f3af1e41e5a45f7725536c7e733bc6c6659fca3 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	380 B	2023-04-12	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 08:49 Last Seen2025-06-14 08:58 Times Seen2285 Hash a105c12aced3684b25ef5c6c2a50ae45 4abe11d93ed53fd44228fb6884f1453148b706c2 fcb515a91d3da29dc86033dda12e22a9509291fed9cc74e555099aff313eb243 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	ScriptElement	69 B	2023-03-07	2025-06-14
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-14 14:32 Times Seen120573 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	js.intercomcdn.com/app~tooltips.64763932.js	ScriptElement	313 kB	2025-03-19	2025-03-26
Pretty URL js.intercomcdn.com/app~tooltips.64763932.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-19 10:33 Last Seen2025-03-26 11:01 Times Seen145 Hash 5f123451d7187ee8553c92d506f04a9b 8c27459e2e85265486aab21e376aa1380aaf4048 dabb4a992d3dd34193c499ef2cfdf6bcd1c26e4d8879df4c5dd98d34bd8d31cc Loading...

	analytics.filemail.com/js/container_UpE19V8Y.js	ScriptElement	120 kB	2023-12-27	2025-06-12
Pretty URL analytics.filemail.com/js/container_UpE19V8Y.js IP 20.82.124.160 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-27 08:43 Last Seen2025-06-12 08:36 Times Seen79 Hash ec20fa9dbef84d6dcad1de79f83b97a5 4db1927e0c9774f57a1b7da9478f1dbb40abbaf0 59da467d9655a2621cb1ba3c83f9c4d247531ee39136b694c677e9de95e1d7ae Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	541 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash 5c68b96b339c9069f475b0a77c893c12 e02590cc06ff7d83c9caa43e47e6ebaf3fd36d56 e3cca98ee80f03ccef4cb321087960bbf44406e403046e80d40409b320e59bf5 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	313 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 0649d8110e989dd69d4d62e6e1188405 f700ed402bfba1c0f6cab072f5fe81953aa80427 4786a4ea10b45f1446e34947fc5dce3d0ba11014be4ff6df0f25be19a6d3966b Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	516 B	2023-10-30	2025-06-05
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 08:32 Last Seen2025-06-05 15:46 Times Seen60 Hash 0ee541b7e490233b9ba8605ff89eee28 69f218e2e1f3f8f29b891c7b64c0a2f70b98c2f7 7d637770ae8654542b2ba239d43bbf91f5307cbcd5abe32a21b6dcdd0f219b2e Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	437 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash 8689add6ddf43d49970f96c0ea42440e 71d463f68c65826feb3c179763fc5808192666df 93b7ffc53b6dcb04378653f96bdf520755987d99c1f9748f5eea04f95096d84d Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	Eval	19 kB	2025-03-16	2025-03-22
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-03-16 08:07 Last Seen2025-03-22 06:42 Times Seen650 Hash c480f42e23257679c854f69f9c259ad9 608a20c4076502d947ac11dd4ca1274b3cc2785a 69cef58713af737a90fe23ab8d68927033ca9aec7d6bbab114798ace349e036d Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	ScriptElement	64 kB	2025-03-21	2025-03-21
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-21 07:30 Last Seen2025-03-21 07:30 Times Seen1 Hash 066b28b69cfc020ea5eb11beefeef6ff 96fbfe9bb5b50d5aed0523cc67bd9b6ad4458826 043dfb18acc23a24d3fdaedce01f1d85ad23fb97a30a5f2a932ebdd7780cca42 Loading...

	js.intercomcdn.com/app.1eae85ae.js	ScriptElement	784 kB	2025-03-20	2025-03-21
Pretty URL js.intercomcdn.com/app.1eae85ae.js IP 54.240.174.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 17:52 Last Seen2025-03-21 09:37 Times Seen14 Hash d1658a2ff16c1de4da0aba3d89305b8d 14ac7999d9ddf0ce5a1060e8de222cdf5c8b1863 a70bc9941a6b1242da7e95a93bd3c007f2ca9dc8f9a6d9c9563021d707c14525 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	EventHandler	38 B	2023-04-10	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:02 Last Seen2025-06-14 14:45 Times Seen25775 Hash 43e28c5553d54ed2964bd5147521769b 0a2b8c3db330a47aa7b9195e6dfdf944adb9240d d63026c985dc46aeb316574b7bf1828080c906238e35d5e34cb80414c0e70d23 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	1.2 kB	2023-04-01	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:40 Last Seen2025-06-12 08:36 Times Seen91 Hash 48d73e7606b623805e0812c75074aac0 f39f952745f097b038e6487afa3333563f962554 2c2a4bc993f9e930a7193369b0f7632347622bae844c0ccfc6f5dc6e3cf7e252 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	532 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash 44ab1b8966349af6b1343ccf25e02444 00b8958aa4ae772331021f7c0dfce8a0951f9417 c40a0f2dc0be46e3be29cf5bf398ba0a168fae81d82c6d932fd7fbb57bf24a5c Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	767 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 0a6152f98043c067d22f4ba88c289b70 0d3c8f71921dae0e45ca07ea68331e19712299a9 bea9149adf80a29b8898cf4b4debc497f5c439faa5456e183cdd404b2ef69f66 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	375 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen77 Hash 54a2edc90acf76e19798df5d13f85458 7f66bd05cdbc88ecc4131f64ecad9ba52fddfc83 2fdf3fc0437c7b344f5a6f1613534059ab8d823c090a41b65d9d480ff27b31e7 Loading...

	www.googletagmanager.com/gtag/js?id=AW-1039234079	ScriptElement	295 kB	2025-03-21	2025-03-21
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1039234079 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-21 07:30 Last Seen2025-03-21 07:30 Times Seen1 Hash 71ee11725bf254376fad4392ce141636 2c8bb181d68edbe21e5bbe2d5a07201e11735adf 2313ed958550c6f95e44c144e28f4745953a2cb800c566a42c25bdd641228e4c Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	519 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash edccb67be67b737fbfc2e19b5c7bccd4 2bc5cd379354d59597d34d06154319b640380c8b 54138eaa37117cb695e7c8c90bd0cbcaabaf230089ed2eee0ea660f0726dab21 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	641 B	2023-04-18	2025-04-03
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-03 20:47 Times Seen75 Hash 3d81b4e6479188645dfa5a112d0ffd7e 0b1ba8224ba20f2fdea7768cc1831e3b684053f2 36e3aa15d6a14322fae7f3a0566188d40f782da2d69a69f055a5ddc87ed93251 Loading...

	widget.intercom.io/widget/p41r18ox	ScriptElement	6.7 kB	2025-03-20	2025-03-21
Pretty URL widget.intercom.io/widget/p41r18ox IP 54.240.174.107 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 17:52 Last Seen2025-03-21 09:41 Times Seen27 Hash 6afe6e258eb97d6d0c0c7d491637c0ac 20b4a2d91a359b7ecd62967089b63a6b92f5b323 c1330a4274f75eaa9fc1f9de467f105eb40ff421f4865c7cd0d79ba2e55731f0 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	ScriptElement	154 B	2023-10-20	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 21:57 Last Seen2025-06-12 08:36 Times Seen99 Hash 4a8b6ecf95fca00c416e100734218bdb 2a2c2afdb9f2ca30cc95299b4136bf757a91b80c 762cc78f462ddbc02608a56aa8081563d05c6d1805b55ca90712b1a51287553b Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	372 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen77 Hash bc08068fff727d08d74e726c07e86ec7 e327fa5d9d0509bfd7e9610489eeac56f81bb4c3 ee9580d17bf892319d1ad0a739f42164b30391ca06510090f0178cae0a352de7 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	378 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen42 Hash 57a267cd1757b1455e60adda6ad5bf6f fbebc5ae8cb995aa15f25cf2d14d7633be0d04d9 1107906a8d11626fcfd83dbc6da929a1834634e3ad35aa04670322adc1a6ef73 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1	Eval	24 kB	2025-03-21	2025-03-21
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 IP 142.250.74.68 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-03-21 07:30 Last Seen2025-03-21 07:30 Times Seen1 Hash 826d47ffc107f0eaba024d48e29f8189 488376a91161f965d24bbf92a315d73b28309e65 60dfb3415fb5f4fe69ac6aaa90bb50167a931048150d42ecd15cd5a12f8c3645 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	524 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 90e05879010b1dbd06fc5bb40549db63 fade9d44123222f10103114a34da7f47eecd7e32 eef7bfb673627e45b9297ef2be3e7aa398e473535c33a08fac384f2a40df7da8 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	538 B	2023-04-18	2025-06-12
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-06-12 08:36 Times Seen85 Hash ee4c05b17684e6a232e67f62813e0f06 f636c482cada6bd157f991feee6d7d2d342f97d2 6c3e890fbf2db166ecf50748a8a2a0940c2094b93ebe3a23dfa3f3b682939b4c Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	922 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash a97fa86beddd6e7f679cd87cf0423dd7 f32085399b9990428b7854305f928c675d518f9c 1ceb322c9c0af234f958f24885fbb73263fae1c5c5d7aaf9dcde3875692f1b91 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	551 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen76 Hash 0e3cca7919a6bf6f757fe406158f02fb e5008ca6ab41651eb063926da16b999cb2a58f9c fa80a097f0308429cb736d6249a359fd7953e1edfef3c2d5f47bca2e4a498706 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	126 B	2023-04-12	2025-06-14
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 10:26 Last Seen2025-06-14 05:15 Times Seen1658 Hash 90608cb0fccba2202c05dff423980923 0a53873934f77d37c9322c611e716b64c6439db9 a432615f0fe9edb2332288c1deab787e4f9767d642a14944e54b1ba0a5989c70 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	638 B	2023-04-18	2025-04-16
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 16:13 Last Seen2025-04-16 11:43 Times Seen78 Hash 4984c5683ecd53dc1a1daaacd5131a70 22b27ddae176abcf6e1d5bbcf8fb621a85cf29b1 be54f39e0c80fe12e83d2ca23211ff91a0ca6a159074931b633fd42b7ac3c351 Loading...

	finansforbundet.filemail.com/d/yhqywgdkxzccgdp	Function	323 B	2023-05-01	2025-04-08
Pretty URL finansforbundet.filemail.com/d/yhqywgdkxzccgdp IP 178.21.23.181 ASN #50673 Serverius Holding B.V. Introduced by Function Embedded in HTML false Observations First Seen2023-05-01 22:45 Last Seen2025-04-08 07:41 Times Seen22 Hash 9a18f4a5dee8d40b34c3cb0991c582c9 7a2e47a8346da7d848f1deda5a6fc7cb3b4de90c 2e86ba690ad378e3b3e9d67ead4b9c8ce8b785fa76e7268cd08aab2ab3bafe9b Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07 01:02	2025-06-14 13:51
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-14 13:51 Times Seen22045 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (58)

URL IP Response Size

finansforbundet.filemail.com/Frontend/images/backgrounds/123.jpg

178.21.23.181

200 OK

148 kB

URL GET
finansforbundet.filemail.com/Frontend/images/backgrounds/123.jpg
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1800x1196, components 3
Size
148 kB (147522 bytes)
Hash
ce4b01f14eec04303ae197ada2b93498
f2c2e394d0c19f0f65667305713155cd69f98adf
3752062e361b282a14ad9e9f7cb83e31b1b44cfe9a597cdb0a01faec88f95629

HTTP Headers

GET /Frontend/images/backgrounds/123.jpg HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/jpeg
Last-Modified: Thu, 20 Mar 2025 06:33:18 GMT
Accept-Ranges: bytes
ETag: "0cb73f76199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 147522

www.google.com/recaptcha/api2/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89

142.250.74.68

200 OK

102 B

URL GET
www.google.com/recaptcha/api2/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB5:4D:C5:27:B4:49:22:F3:21:DF:88:3D:E6:05:D6:A1:02:98:C7:E2
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
85cf33a7525444b6ca922f12fdb45e9c
5bc107045cce930f2e2ff8a134a52afcb7edb55b
223a644c50bb4e93aee4c2c96ae68188d4bc0b1ba5a10f32293eb32066857a47

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
expires: Fri, 21 Mar 2025 07:30:05 GMT
date: Fri, 21 Mar 2025 07:30:05 GMT
cache-control: private, max-age=300
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&scrsrc=www.googletagmanager.com&frm=0&rnd=1798471287.1742542204&dt=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&auid=179491913.1742542204&navt=n&npa=1&gtm=45be53j1v9166926293za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102788824~102803279~102813109&tft=1742542204479&tfd=1178&apve=1

142.250.74.68

200 OK

0 B

URL POST
www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&scrsrc=www.googletagmanager.com&frm=0&rnd=1798471287.1742542204&dt=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&auid=179491913.1742542204&navt=n&npa=1&gtm=45be53j1v9166926293za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102788824~102803279~102813109&tft=1742542204479&tfd=1178&apve=1
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB5:4D:C5:27:B4:49:22:F3:21:DF:88:3D:E6:05:D6:A1:02:98:C7:E2
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ccm/collect?en=page_view&dl=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&scrsrc=www.googletagmanager.com&frm=0&rnd=1798471287.1742542204&dt=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&auid=179491913.1742542204&navt=n&npa=1&gtm=45be53j1v9166926293za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102788824~102803279~102813109&tft=1742542204479&tfd=1178&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 200 OK
content-type: text/plain
expires: Fri, 01 Jan 1990 00:00:00 GMT
date: Fri, 21 Mar 2025 07:30:05 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://finansforbundet.filemail.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1

142.250.74.68

200 OK

72 kB

URL GET
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintB5:4D:C5:27:B4:49:22:F3:21:DF:88:3D:E6:05:D6:A1:02:98:C7:E2
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
HTML document, ASCII text, with very long lines (56624)
Size
72 kB (72500 bytes)
Hash
d3e964a5946181fa5af31157f20a058c
04e285d24bb805691ad2cee816844fb14dba81df
1067d8d173f63b7b27d6fe67f0c600bea26050a0bae96fdad2e91a3baf5bf034

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 21 Mar 2025 07:30:05 GMT
content-security-policy: script-src 'nonce-cDzTHGp3-5uVl1_CHsE5xQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.35

200 OK

24 kB

URL GET
fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23484, version 1.0
Size
24 kB (23484 bytes)
Hash
b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1

HTTP Headers

GET /s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://finansforbundet.filemail.com/
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:21:41 GMT
expires: Fri, 20 Mar 2026 09:21:41 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Jul 2019 03:45:47 GMT
content-type: font/woff2
age: 79704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

finansforbundet.filemail.com/images/logo/logo.svg

178.21.23.181

200 OK

3.9 kB

URL GET
finansforbundet.filemail.com/images/logo/logo.svg
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
3.9 kB (3949 bytes)
Hash
4b61179f208ae26bcb2ed14219bd938d
f120b120a05950866fea80e1871b7581ec4f9eed
63a61f7a98e5a45d4d88e94d36cc881d2da94971c62fffd334ef2f3fb91c9720

HTTP Headers

GET /images/logo/logo.svg HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/svg+xml
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 3949

finansforbundet.filemail.com/images/favicons/favicon-16x16.png

178.21.23.181

200 OK

510 B

URL GET
finansforbundet.filemail.com/images/favicons/favicon-16x16.png
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
510 B (510 bytes)
Hash
01123ca0dfc1c2f4207cb837f757a1d8
1fa75564250bae0b8bbe9228c82d03b4e4e21865
a645f8b6f8af407cf072d99a5009599e169d69af25a9ee0c963ff004bc1ddc7c

HTTP Headers

GET /images/favicons/favicon-16x16.png HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/png
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 510

www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/styles__ltr.css

142.250.74.99

200 OK

79 kB

URL GET
www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/styles__ltr.css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
79 kB (78627 bytes)
Hash
6af145664eb7177b2280dffa8492731c
1e95f2f04e7b6335081e7cdbdcc48a4654a44ed3
0767863bfde47d05640ad76bd3a33aa5cd7dfba5391e1d80347f7ec41563e404

HTTP Headers

GET /recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 42056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Mar 2025 03:19:46 GMT
expires: Sat, 21 Mar 2026 03:19:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Mar 2025 16:03:14 GMT
content-type: text/css
vary: Accept-Encoding
age: 15019
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.intercomcdn.com/vendors~app~tooltips.07c9076a.js

54.240.174.98

200 OK

734 kB

URL GET
js.intercomcdn.com/vendors~app~tooltips.07c9076a.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type

Size
734 kB (734475 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vendors~app~tooltips.07c9076a.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 175095
cross-origin-resource-policy: cross-origin
last-modified: Wed, 19 Mar 2025 14:59:56 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: iEenEcYvbBxgLCg6a3Eb4unAJu3lf5M5
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 05:36:18 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "66c1019fea54e40283cf0f62ee2e9f57"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
age: 6843
x-amz-cf-id: TWBMYDA5IcGYFJ-5f1ENDueS7Y2PTVE576jqWFQr8DaFnChQQJ9cag==

finansforbundet.filemail.com/bundle/js/common_master-bluemaster_common-anonymous_downloadslim-downloadslim/803b8ab26495d90b680363a5fc8287c0258c37092a23750bfedf56b7e4d8

178.21.23.181

200 OK

576 kB

URL GET
finansforbundet.filemail.com/bundle/js/common_master-bluemaster_common-anonymous_downloadslim-downloadslim/803b8ab26495d90b680363a5fc8287c0258c37092a23750bfedf56b7e4d8
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type

Size
576 kB (575689 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bundle/js/common_master-bluemaster_common-anonymous_downloadslim-downloadslim/803b8ab26495d90b680363a5fc8287c0258c37092a23750bfedf56b7e4d8 HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=7776000
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 235317

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGQQFNQ5FOJVWC3LQMFXGUZLOEAZDAMRVEAWSAQLOMUQEXQ5YMJSXEICHOVWGI5TJNMQG6ZZAKNXWY5TFNFTSATJOEBBGVQ5YOJXHG5DBMQWCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium

193.30.119.109

200 OK

16 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGQQFNQ5FOJVWC3LQMFXGUZLOEAZDAMRVEAWSAQLOMUQEXQ5YMJSXEICHOVWGI5TJNMQG6ZZAKNXWY5TFNFTSATJOEBBGVQ5YOJXHG5DBMQWCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
16 kB (16107 bytes)
Hash
24cb08fb7b654f801381b0426a168411
ea231b5805325b8da1fc21fdd11285e3178472ab
6ce07fddeabcafb2eb5c2833314864878eedd314b6c7219b4e632f53a58cc574

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGQQFNQ5FOJVWC3LQMFXGUZLOEAZDAMRVEAWSAQLOMUQEXQ5YMJSXEICHOVWGI5TJNMQG6ZZAKNXWY5TFNFTSATJOEBBGVQ5YOJXHG5DBMQWCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 16107
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:18:45 GMT
expires: Fri, 20 Mar 2026 09:18:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 79880
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.99

200 OK

2.2 kB

URL GET
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:12:16 GMT
expires: Thu, 27 Mar 2025 09:12:16 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 80269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

wss://nexus-websocket-a.intercom.io/pubsub/5-0Yv7E_nLE6MnSISBwGt7xQ_akHSisTROY65RxrJ8_3zLVmLlat6HePmdPE94mTCtLWysxDgikofetek7iWoUyItRIl4ZsjR6CT9z?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor

35.174.127.31

101 Switching Protocols

0 B

URL GET
wss://nexus-websocket-a.intercom.io/pubsub/5-0Yv7E_nLE6MnSISBwGt7xQ_akHSisTROY65RxrJ8_3zLVmLlat6HePmdPE94mTCtLWysxDgikofetek7iWoUyItRIl4ZsjR6CT9z?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor
IP
35.174.127.31:443
ASN
#14618 AMAZON-AES

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerDigiCert Inc
Subject*.intercom.io
Fingerprint01:2B:AC:F8:6C:B3:21:F3:1E:37:12:FA:6C:42:1B:9B:02:69:2B:3C
ValidityThu, 12 Dec 2024 00:00:00 GMT - Mon, 12 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pubsub/5-0Yv7E_nLE6MnSISBwGt7xQ_akHSisTROY65RxrJ8_3zLVmLlat6HePmdPE94mTCtLWysxDgikofetek7iWoUyItRIl4ZsjR6CT9z?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://finansforbundet.filemail.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m6C3iMewNI5qBjMrY/zvcw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 21 Mar 2025 07:30:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fXEvaPH/sz6Dj1yOZvoBsBnoDKE=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover

js.intercomcdn.com/app.1eae85ae.js

54.240.174.98

200 OK

784 kB

URL GET
js.intercomcdn.com/app.1eae85ae.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type

Size
784 kB (784322 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app.1eae85ae.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 183424
cross-origin-resource-policy: cross-origin
last-modified: Thu, 20 Mar 2025 16:04:12 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: A8z2Yx9IFZ2krZcNpr3ifGaJkL8wPFYT
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:06:55 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "af92874eccddfe1460aaf7be088e08b9"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
age: 5002
x-amz-cf-id: q65_RqWJ5ruZ-0xITDnDlHX-VlMppBH7E1Z9Uk12pUNjLoo0s3H9Qg==

finansforbundet.filemail.com/images/logo/logo-horiz.svg

178.21.23.181

200 OK

8.1 kB

URL GET
finansforbundet.filemail.com/images/logo/logo-horiz.svg
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
8.1 kB (8105 bytes)
Hash
56d3f680600556e11b442fecdd801d94
737c80c14072e3284ba148da47fc9e2297861d6d
aa2574a17758c89d758da54bd0537719fc6641ab9b8cd0243ac094018d8d68ff

HTTP Headers

GET /images/logo/logo-horiz.svg HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/svg+xml
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 8105

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGEQFAZLSONYGK23UNF3G2ZLMMRUW4Z3FNYQDEMBSGQWCAS3SNFZXI2LOMUQERQ5YMVTWQLKPNVSGC3BAIZUW4LTEMVYC44DEMY&size=Medium

193.30.119.109

200 OK

24 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGEQFAZLSONYGK23UNF3G2ZLMMRUW4Z3FNYQDEMBSGQWCAS3SNFZXI2LOMUQERQ5YMVTWQLKPNVSGC3BAIZUW4LTEMVYC44DEMY&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
24 kB (24429 bytes)
Hash
034fe4bca18dfd802d9c44ce1a021d46
d73b5a141ccba440a75e7d6a83994c31d2d6496b
fa61027c0829a1015a77c4586d7fff86051adf7f83e6e17e4b8e03e352762cc9

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGEQFAZLSONYGK23UNF3G2ZLMMRUW4Z3FNYQDEMBSGQWCAS3SNFZXI2LOMUQERQ5YMVTWQLKPNVSGC3BAIZUW4LTEMVYC44DEMY&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 24429
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

127.0.0.1:56667/?_=1742542204509

0.0.0.0

0 B

URL GET
127.0.0.1:56667/?_=1742542204509
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542204509 HTTP/1.1
Host: 127.0.0.1:56667
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGIQEC4TCMVUWI43MNFXGUZLOEBXWOIDBOJRGK2LEEB2GS3BAMFWGYZJMEBIGK4RAJ5WGC5RAKNVXK4TEMFWCASDPOBZ4HOBAIFEUILTQMRTA&size=Medium

193.30.119.109

200 OK

40 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGIQEC4TCMVUWI43MNFXGUZLOEBXWOIDBOJRGK2LEEB2GS3BAMFWGYZJMEBIGK4RAJ5WGC5RAKNVXK4TEMFWCASDPOBZ4HOBAIFEUILTQMRTA&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
40 kB (40359 bytes)
Hash
68f6b2cad1f1de82e4b65aa27418e57e
d3d2b4abe359bb8c2e62b36806aadc775477d02b
1d30ed3f8a1a25ad8146cf31f2077fae7acdd3918a1ae7cf145749ceea1d79d0

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGIQEC4TCMVUWI43MNFXGUZLOEBXWOIDBOJRGK2LEEB2GS3BAMFWGYZJMEBIGK4RAJ5WGC5RAKNVXK4TEMFWCASDPOBZ4HOBAIFEUILTQMRTA&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 40359
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGUQE63JANRQW4ZDTNXB3Q5DFOQQDEMBSGUQC2ICKMFXCAUTPMFWGIICIMVUWEZLSM4WCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium

193.30.119.109

200 OK

13 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGUQE63JANRQW4ZDTNXB3Q5DFOQQDEMBSGUQC2ICKMFXCAUTPMFWGIICIMVUWEZLSM4WCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
13 kB (12919 bytes)
Hash
254f00c788816755b10006602d44a6c0
ec40f072adfbb0f80e4f224c6087094b119c5b56
e943bcfc91b7f6ed42c7dd5aff0a1f339ddcee4f58f82a621a0889026719def9

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGUQE63JANRQW4ZDTNXB3Q5DFOQQDEMBSGUQC2ICKMFXCAUTPMFWGIICIMVUWEZLSM4WCARTJNZQW443GN5ZGE5LOMRSXILTQMRTA&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 12919
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGYQEM2LOMFXHGZTPOJRHK3TEMV2HGIGDXBVW63TPNVUSAMRQGI2SALJAIFZG4ZJAIZZGKZDSNFVSASGDUVZXIZLJNYWCA3TFON2GYZLEMVZC44DEMY&size=Medium

193.30.119.109

200 OK

24 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGYQEM2LOMFXHGZTPOJRHK3TEMV2HGIGDXBVW63TPNVUSAMRQGI2SALJAIFZG4ZJAIZZGKZDSNFVSASGDUVZXIZLJNYWCA3TFON2GYZLEMVZC44DEMY&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
24 kB (24267 bytes)
Hash
be6bb37083b168c74e06b1a1a6c1bf7c
875d76454de87fad52f7f74bf4bb3bcea82d895e
e97b761263f663ea578b7707e961f06b90eb7112e8e47832755f61e10d1f1ed8

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGYQEM2LOMFXHGZTPOJRHK3TEMV2HGIGDXBVW63TPNVUSAMRQGI2SALJAIFZG4ZJAIZZGKZDSNFVSASGDUVZXIZLJNYWCA3TFON2GYZLEMVZC44DEMY&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 24267
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

127.0.0.1:56667/?_=1742542209568

0.0.0.0

0 B

URL GET
127.0.0.1:56667/?_=1742542209568
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542209568 HTTP/1.1
Host: 127.0.0.1:56667
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

js.intercomcdn.com/launcher-discovery.a1869a1c.js

54.240.174.98

200 OK

8.6 kB

URL GET
js.intercomcdn.com/launcher-discovery.a1869a1c.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8813), with no line terminators
Size
8.6 kB (8587 bytes)
Hash
4fc711f51f404d75f7c059f1e4bce06e
0d5d2525723dec78dab487fa15d65ecd430475e8
f1a375497730f84941a68b10bec7e20b9bdb7c061889005e8ae79cfa570aa4d0

HTTP Headers

GET /launcher-discovery.a1869a1c.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2680
cross-origin-resource-policy: cross-origin
last-modified: Wed, 19 Mar 2025 14:59:55 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: to0rOfmUXiBeLkDD23n81Di_0Hc8IFeV
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:47:54 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "af59c8e2ac28d93cb2bc089a245ef7a7"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
age: 2662
x-amz-cf-id: vq0ij1kDPtv0ww5WdFppwwMA7M3dXRilKORV9WWpSzGYbbqHH1CjUg==

fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.35

200 OK

24 kB

URL GET
fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23484, version 1.0
Size
24 kB (23484 bytes)
Hash
b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1

HTTP Headers

GET /s/lato/v16/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://finansforbundet.filemail.com/
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:21:41 GMT
expires: Fri, 20 Mar 2026 09:21:41 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Jul 2019 03:45:47 GMT
content-type: font/woff2
age: 79703
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-1039234079

142.250.74.136

200 OK

295 kB

URL GET
www.googletagmanager.com/gtag/js?id=AW-1039234079
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type
JavaScript source, ASCII text, with very long lines (5343)
Size
295 kB (294791 bytes)
Hash
71ee11725bf254376fad4392ce141636
2c8bb181d68edbe21e5bbe2d5a07201e11735adf
2313ed958550c6f95e44c144e28f4745953a2cb800c566a42c25bdd641228e4c

HTTP Headers

GET /gtag/js?id=AW-1039234079 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 21 Mar 2025 07:30:04 GMT
expires: Fri, 21 Mar 2025 07:30:04 GMT
cache-control: private, max-age=900
last-modified: Fri, 21 Mar 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 103513
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

api-iam.intercom.io/messenger/web/launcher_settings

34.233.102.105

200 OK

240 B

URL POST
api-iam.intercom.io/messenger/web/launcher_settings
IP
34.233.102.105:443
ASN
#14618 AMAZON-AES

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercom.com
Fingerprint40:E3:24:32:5B:DE:76:F0:A4:43:7F:C2:84:CD:98:D0:50:48:25:7E
ValiditySat, 14 Dec 2024 00:00:00 GMT - Sun, 11 Jan 2026 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
240 B (240 bytes)
Hash
313bcb4325fa6c332c3c80ee441b7f5c
f71d609555fa018348a1cc041d82694639382ce7
0540f39baa332807b6c21dd0062114f15ab4b63abce6cef76a3226d251d18c4d

HTTP Headers

POST /messenger/web/launcher_settings HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 418
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 21 Mar 2025 07:30:11 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
access-control-allow-origin: https://finansforbundet.filemail.com
vary: Accept,Accept-Encoding
strict-transport-security: max-age=31556952; includeSubDomains; preload
access-control-expose-headers: x-request-id
x-intercom-version: ea2242999c7cf22f8c4282f697a050e58473f1ee
content-encoding: gzip
access-control-max-age: 86400
x-xss-protection: 1; mode=block
x-request-queueing: 0
x-request-id: 000eupumkpdoet91f2b0
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA, traceparent, X-Continue-Intercom-Trace
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"1fd7fef47b95ffb9ce3174ff36bd2501"
x-runtime: 0.035082
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-07c2e9f913a026b30
X-Firefox-Spdy: h2

widget.intercom.io/widget/p41r18ox

54.240.174.107

200 OK

6.7 kB

URL GET
widget.intercom.io/widget/p41r18ox
IP
54.240.174.107:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercom.com
Fingerprint40:E3:24:32:5B:DE:76:F0:A4:43:7F:C2:84:CD:98:D0:50:48:25:7E
ValiditySat, 14 Dec 2024 00:00:00 GMT - Sun, 11 Jan 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6938), with no line terminators
Size
6.7 kB (6742 bytes)
Hash
7ae5a924ea0e57877ad3a6be64ca9e9d
6c83d92fae228f6ec203f251801ddacfc9ff261b
8606cc315b58ed794ea0e6b7e4154b7a5188bb136c33d073b1c075f3b763f83d

HTTP Headers

GET /widget/p41r18ox HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2673
last-modified: Thu, 20 Mar 2025 16:06:52 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: slwjC9rxMCzi7qO5eVqIxnJTTO73EBeb
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 07:29:12 GMT
cache-control: max-age=300, s-maxage=300, public
etag: "8474db48b80f7726f440713df649e168"
x-cache: Error from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UXBoAm5Sih7gOSxi4mUO8v4rXhN6m9HhLJkrBh_tR65TQDLRlA5IgA==
age: 59
cross-origin-resource-policy: cross-origin
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

js.intercomcdn.com/vendor.370d3c70.js

54.240.174.98

200 OK

672 kB

URL GET
js.intercomcdn.com/vendor.370d3c70.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type

Size
672 kB (672455 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vendor.370d3c70.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 208547
last-modified: Wed, 19 Mar 2025 14:59:56 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: iOXCnAX46JIhVkJTS.4OyCLFctNg6QlE
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:26:01 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "1cf73ba4c2dc14b585f70801c595cdec"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: vRLtPHpm-9toNLLWAxJTwNmi1K553I8hMoKKNfcVurEKg_pFXSe70g==
age: 3850
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Mar 2025 09:35:39 GMT
expires: Fri, 20 Mar 2026 09:35:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 78866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

filemailprod.blob.core.windows.net/logos/3405145608Medium.png?_=1603102444546

20.60.27.132

200 OK

7.6 kB

URL GET
filemailprod.blob.core.windows.net/logos/3405145608Medium.png?_=1603102444546
IP
20.60.27.132:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
FingerprintD7:DA:91:92:C7:CF:7C:CB:04:2C:CD:1B:99:7B:BF:A7:BA:23:45:41
ValidityMon, 27 Jan 2025 08:02:11 GMT - Sat, 26 Jul 2025 08:02:11 GMT

File type
PNG image data, 287 x 80, 8-bit/color RGBA, non-interlaced
Size
7.6 kB (7610 bytes)
Hash
b2d6ea94da75403b28967b583b22dd53
b27e48a02bfd768ca6d99f9de1dde0945aa2c7c6
5a8d6a951aaa9a73a468530597963d61d3c28e6bf6c784516c625c53f1f77e65

HTTP Headers

GET /logos/3405145608Medium.png?_=1603102444546 HTTP/1.1
Host: filemailprod.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 7610
Content-Type: image/png
Content-MD5: stbqlNp1QDsolntYOyLdUw==
Last-Modified: Tue, 24 Nov 2020 21:00:44 GMT
ETag: 0x8D890BC02A536F2
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a927d385-001e-007f-6533-9a25d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Fri, 21 Mar 2025 07:30:03 GMT

finansforbundet.filemail.com/images/recoverdata.png

178.21.23.181

200 OK

4.3 kB

URL GET
finansforbundet.filemail.com/images/recoverdata.png
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit gray+alpha, non-interlaced
Size
4.3 kB (4287 bytes)
Hash
ef7625323f338377be337a7c64bb0fa3
b1161e24df45116179a6e62d8170d6825737b73a
683ad070abc84a94e6d91034eba90e05f7a81b35752f9e45e5fdeef8198049bc

HTTP Headers

GET /images/recoverdata.png HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/png
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 4287

127.0.0.1:56666/?_=1742542214569

0.0.0.0

0 B

URL GET
127.0.0.1:56666/?_=1742542214569
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542214569 HTTP/1.1
Host: 127.0.0.1:56666
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

127.0.0.1:56666/?_=1742542219568

0.0.0.0

0 B

URL GET
127.0.0.1:56666/?_=1742542219568
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542219568 HTTP/1.1
Host: 127.0.0.1:56666
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

analytics.filemail.com/js/container_UpE19V8Y.js

20.82.124.160

200 OK

120 kB

URL GET
analytics.filemail.com/js/container_UpE19V8Y.js
IP
20.82.124.160:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1601)
Size
120 kB (119660 bytes)
Hash
ec20fa9dbef84d6dcad1de79f83b97a5
4db1927e0c9774f57a1b7da9478f1dbb40abbaf0
59da467d9655a2621cb1ba3c83f9c4d247531ee39136b694c677e9de95e1d7ae

HTTP Headers

GET /js/container_UpE19V8Y.js HTTP/1.1
Host: analytics.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 34613
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 19 Dec 2023 06:37:17 GMT
accept-ranges: bytes
etag: "808c20cf4532da1:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Fri, 21 Mar 2025 07:30:03 GMT
X-Firefox-Spdy: h2

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQG4QFA33MNF2GS43LEBYHE33HOJQW2IBSGAZDKLJSGAZDQIBNEBJXMZLOEBCWSZDFFQQEM2LOMFXHGZTPOJRHK3TEMV2C44DEMY&size=Medium

193.30.119.109

200 OK

23 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQG4QFA33MNF2GS43LEBYHE33HOJQW2IBSGAZDKLJSGAZDQIBNEBJXMZLOEBCWSZDFFQQEM2LOMFXHGZTPOJRHK3TEMV2C44DEMY&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x338, components 3
Size
23 kB (22613 bytes)
Hash
d0bcc2450362621aa8c659cacae3f877
bcd8412527052c2950856b42868f71a8a9dd4baf
9f8d742a31985f8a885725a3489947f890d03c61f116f8517ec67ff96579b4ec

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQG4QFA33MNF2GS43LEBYHE33HOJQW2IBSGAZDKLJSGAZDQIBNEBJXMZLOEBCWSZDFFQQEM2LOMFXHGZTPOJRHK3TEMV2C44DEMY&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 22613
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

filemail.b-cdn.net/webapp/fonts/fa-light-300.woff2

194.242.11.186

200 OK

157 kB

URL GET
filemail.b-cdn.net/webapp/fonts/fa-light-300.woff2
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.b-cdn.net
FingerprintBD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
ValidityTue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 156892, version 329.30932
Size
157 kB (156892 bytes)
Hash
67cf9b9845e2bf8be3dba8a93fa07134
0f4206b598d042b62d3aad26a3126c3ba0ddfcf7
082425ce63442064f2acd182fcdac79ecbebdbfe2e392493ac9b1dc71a5c1842

HTTP Headers

GET /webapp/fonts/fa-light-300.woff2 HTTP/1.1
Host: filemail.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://finansforbundet.filemail.com/
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 21 Mar 2025 07:30:04 GMT
content-type: font/woff2
content-length: 156892
server: BunnyCDN-NO1-830
cdn-pullzone: 1684768
cdn-uid: 87d26d0a-dd6e-4ed6-8a49-4925c3ae11b2
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
last-modified: Thu, 19 Dec 2024 15:18:19 GMT
cdn-storageserver: SE-582
cdn-fileserver: 808
cdn-proxyver: 1.19
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 02/20/2025 22:56:56
cdn-edgestorageid: 830
cdn-requestid: 5d337eabc322f3774e066b4339fb0b9b
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

127.0.0.1:56666/?_=1742542204509

0.0.0.0

0 B

URL GET
127.0.0.1:56666/?_=1742542204509
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542204509 HTTP/1.1
Host: 127.0.0.1:56666
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

js.intercomcdn.com/vendors~app.10d78236.js

54.240.174.98

200 OK

544 kB

URL GET
js.intercomcdn.com/vendors~app.10d78236.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type

Size
544 kB (543593 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vendors~app.10d78236.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 110885
cross-origin-resource-policy: cross-origin
last-modified: Wed, 19 Mar 2025 14:59:56 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: BI2VYaeMjY.7he7I3itdU1Cl4dLW0R1T
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:11:56 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "187b542f53c7acf47ebe3df2f31eb641"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
age: 4701
x-amz-cf-id: vt97kXbp6GAuQNLjxXLcxKLo9D3CqO2zJlOjs2QA6Gl6vPPLvZ6cjA==

www.google.com/recaptcha/api.js?render=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&onload=__recaptchaCallback

142.250.74.68

200 OK

1.0 kB

URL GET
www.google.com/recaptcha/api.js?render=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&onload=__recaptchaCallback
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint2F:CC:05:C5:14:C4:CD:A4:26:05:31:F9:67:40:7C:D3:39:74:34:0C
ValidityMon, 10 Mar 2025 08:37:46 GMT - Mon, 02 Jun 2025 08:37:45 GMT

File type
JavaScript source, ASCII text, with very long lines (1007), with no line terminators
Size
1.0 kB (1007 bytes)
Hash
2ed89f00024c2b18682da8f507d6697a
2f6c4d861737de3eb7068e1eedcbed7660e3bc22
a1879cc883bc51cec63ea96bfa69cf15838c1145ce0f05e70c5f1c37042008c3

HTTP Headers

GET /recaptcha/api.js?render=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&onload=__recaptchaCallback HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 21 Mar 2025 07:30:04 GMT
date: Fri, 21 Mar 2025 07:30:04 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

finansforbundet.filemail.com/api/transfer/get

178.21.23.181

200 OK

17 kB

URL POST
finansforbundet.filemail.com/api/transfer/get
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type

Size
17 kB (16765 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/transfer/get HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Content-Type: application/x-www-form-urlencoded
Source: Web
Content-Length: 73
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: application/json; charset=utf-8
Content-Encoding: gzip
Vary: Origin,Accept-Encoding
Access-Control-Allow-Origin: https://finansforbundet.filemail.com
Access-Control-Request-Method: GET POST OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-Token, Source
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:04 GMT
Content-Length: 4607

127.0.0.1:56667/?_=1742542214569

0.0.0.0

0 B

URL GET
127.0.0.1:56667/?_=1742542214569
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542214569 HTTP/1.1
Host: 127.0.0.1:56667
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

127.0.0.1:56666/?_=1742542209568

0.0.0.0

0 B

URL GET
127.0.0.1:56666/?_=1742542209568
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542209568 HTTP/1.1
Host: 127.0.0.1:56666
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

finansforbundet.filemail.com/api/internal/languageusage/report

178.21.23.181

200 OK

30 B

URL POST
finansforbundet.filemail.com/api/internal/languageusage/report
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
5ea0457000c1b9041be8343c1206ed0a
938bd23f664c1b1b249366a0b231644ad8200da2
2a504487f6a4eea32fae09f4862e0caa4bfb894c9722f69b574db8290f2e68f9

HTTP Headers

POST /api/internal/languageusage/report HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Source: Web
X-Requested-With: XMLHttpRequest
Content-Length: 357
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204; intercom-id-p41r18ox=a299da50-cee6-44f6-8fbb-a2f3eda9b980; intercom-session-p41r18ox=; intercom-device-id-p41r18ox=6d483237-a318-41c7-a1a2-6f8f038b1d59
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: application/json; charset=utf-8
Content-Encoding: gzip
Vary: Origin,Accept-Encoding
Access-Control-Allow-Origin: https://finansforbundet.filemail.com
Access-Control-Request-Method: GET POST OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-Token, Source
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:14 GMT
Content-Length: 150

api-iam.intercom.io/messenger/web/ping

34.233.102.105

200 OK

4.4 kB

URL POST
api-iam.intercom.io/messenger/web/ping
IP
34.233.102.105:443
ASN
#14618 AMAZON-AES

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercom.com
Fingerprint40:E3:24:32:5B:DE:76:F0:A4:43:7F:C2:84:CD:98:D0:50:48:25:7E
ValiditySat, 14 Dec 2024 00:00:00 GMT - Sun, 11 Jan 2026 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (4759), with no line terminators
Size
4.4 kB (4367 bytes)
Hash
09a5d5a2266b544de70685f8f8ebd7f7
53547c5c6bbb94a828122de4a20e3456ad6de6b0
af3edfd0217e0ca568b309985ede79d39dbdc43b5413e99b15426cbc5fddbd3f

HTTP Headers

POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 558
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 21 Mar 2025 07:30:11 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
access-control-allow-origin: https://finansforbundet.filemail.com
vary: Accept,Accept-Encoding
strict-transport-security: max-age=31556952; includeSubDomains; preload
access-control-expose-headers: x-request-id
x-intercom-version: ea2242999c7cf22f8c4282f697a050e58473f1ee
content-encoding: gzip
access-control-max-age: 86400
x-xss-protection: 1; mode=block
x-request-queueing: 0
x-request-id: 001svgtqsqp7tc5c1e60
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA, traceparent, X-Continue-Intercom-Trace
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"9a7a80f17d3731b7649be98fef8a3fae"
x-runtime: 0.198335
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-07c2e9f913a026b30
X-Firefox-Spdy: h2

finansforbundet.filemail.com/d/yhqywgdkxzccgdp

178.21.23.181

200 OK

244 kB

URL User Request GET
finansforbundet.filemail.com/d/yhqywgdkxzccgdp
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (63058), with CRLF line terminators
Size
244 kB (244507 bytes)
Hash
4f5e91039b861e51d1a7f2dc6a2ab4b3
7d524ea3020112006a0bb23e374699b121e857a2
bc759209611813e3b00b3f77d473cbb1a7abf80d6a7b885acf4e3a24aca84cdc

HTTP Headers

GET /d/yhqywgdkxzccgdp HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Content-Language: en
Vary: Accept-Encoding
Set-Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; path=/; secure; HttpOnly; SameSite=Lax
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: frame-ancestors 'none';report-to csp-endpoint
Feature-Policy: accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; usb 'none'; sync-xhr 'self'
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 83095

finansforbundet.filemail.com/Frontend/images/backgrounds/051.jpg

178.21.23.181

200 OK

223 kB

URL GET
finansforbundet.filemail.com/Frontend/images/backgrounds/051.jpg
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1800x1200, components 3
Size
223 kB (222809 bytes)
Hash
3e183afac4991f6a81cd7f110e8aa1f5
b8b96caf5006afbb0c7899bbc9f63d28a6285743
9e466d70e18c6025eb47251f0359eea3633065f6c479874708da38ea14bda648

HTTP Headers

GET /Frontend/images/backgrounds/051.jpg HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/jpeg
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:08 GMT
Content-Length: 222809

www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js

142.250.74.99

200 OK

559 kB

URL GET
www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type

Size
559 kB (558604 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220830
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Mar 2025 04:28:18 GMT
expires: Sat, 21 Mar 2026 04:28:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Mar 2025 16:03:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10907
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.intercomcdn.com/frame.512ab2ca.js

54.240.174.98

200 OK

926 kB

URL GET
js.intercomcdn.com/frame.512ab2ca.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65464)
Size
926 kB (926320 bytes)
Hash
ce51876983cb2506bcecd23b0188b2ab
e21c344640d3fd5ee571bff85e1cf46088834ae3
d0d4050fe3234edbe514a2747c7644e4e2b536b7fd359e4a95af99ef11d6c0c4

HTTP Headers

GET /frame.512ab2ca.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 199433
last-modified: Thu, 20 Mar 2025 16:04:12 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: jhOCGrG2nMacbgc_ISUUZPlEkRjtReUc
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:06:55 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "03464921efd9cc87d6cbb306bc406369"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: y9AJHzwyn3rKY0-gI_bEjzOr6Jm0-fRpCSrvbyXnIu3ku-z9uHbeWw==
age: 4996
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

127.0.0.1:56667/?_=1742542219568

0.0.0.0

0 B

URL GET
127.0.0.1:56667/?_=1742542219568
IP
0.0.0.0:0
ASN
#0

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_=1742542219568 HTTP/1.1
Host: 127.0.0.1:56667
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

finansforbundet.filemail.com/Frontend/angular/download/downloadDetails.template.html?_v=1.9917.0.1

178.21.23.181

200 OK

17 kB

URL GET
finansforbundet.filemail.com/Frontend/angular/download/downloadDetails.template.html?_v=1.9917.0.1
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type

Size
17 kB (17333 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Frontend/angular/download/downloadDetails.template.html?_v=1.9917.0.1 HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Source: Web
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
Vary: Accept-Encoding
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 3828

3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGMQECSJAMFXGIIDBNRTW64TJORUG22LDEBWWC3TBM5SW2ZLOOQQGS3RAMZUW4YLOMNSSBYUASMQHI2DSMVQXI4ZAMFXGIIDPOBYG64TUOVXGS5DJMVZSYICLMFZXAZLSEBCWI53BOJSHGLTQMRTA&size=Medium

193.30.119.109

200 OK

32 kB

URL GET
3009.filemail.com/getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGMQECSJAMFXGIIDBNRTW64TJORUG22LDEBWWC3TBM5SW2ZLOOQQGS3RAMZUW4YLOMNSSBYUASMQHI2DSMVQXI4ZAMFXGIIDPOBYG64TUOVXGS5DJMVZSYICLMFZXAZLSEBCWI53BOJSHGLTQMRTA&size=Medium
IP
193.30.119.109:443
ASN
#206667 JOTTA AS

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 600x424, components 3
Size
32 kB (31926 bytes)
Hash
d2c2e9fbed090d1de3281aebda4ae7a6
79349f29fdac05ef7c7cde536bd1908a3f21f286
19a4f19b9077b953047309be59000ed78a1c1163d36179db9fc56a0af12e7003

HTTP Headers

GET /getthumbnail.ashx?fileid=PFUHC6LXM5SGW6D2MNRWOZDQPR6HYUDSMVZWK3TUMFZWU33OMVZCA5WDUVZGW33OMZSXEYLOONSW4IBSGAZDKLZQGMQECSJAMFXGIIDBNRTW64TJORUG22LDEBWWC3TBM5SW2ZLOOQQGS3RAMZUW4YLOMNSSBYUASMQHI2DSMVQXI4ZAMFXGIIDPOBYG64TUOVXGS5DJMVZSYICLMFZXAZLSEBCWI53BOJSHGLTQMRTA&size=Medium HTTP/1.1
Host: 3009.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1; _gcl_au=1.1.179491913.1742542204
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=604800
Content-Length: 31926
Content-Type: image/jpeg
Date: Fri, 21 Mar 2025 07:30:04 GMT

finansforbundet.filemail.com/bundle/css/bluemaster-later/c02c46bc5d30f01

178.21.23.181

200 OK

141 kB

URL GET
finansforbundet.filemail.com/bundle/css/bluemaster-later/c02c46bc5d30f01
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type

Size
141 kB (141015 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bundle/css/bluemaster-later/c02c46bc5d30f01 HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=7776000
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 36028

www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js

142.250.74.99

200 OK

559 kB

URL GET
www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfiE5ocAAAAAPIxSggV1OLpAwQcnEJPbS7aqwNp&co=aHR0cHM6Ly9maW5hbnNmb3JidW5kZXQuZmlsZW1haWwuY29tOjQ0Mw..&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=uk58cvc3a6o1
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type

Size
559 kB (558604 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220830
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Mar 2025 04:28:18 GMT
expires: Sat, 21 Mar 2026 04:28:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Mar 2025 16:03:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10907
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

finansforbundet.filemail.com/images/favicons/apple-touch-icon.png

178.21.23.181

200 OK

2.6 kB

URL GET
finansforbundet.filemail.com/images/favicons/apple-touch-icon.png
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced
Size
2.6 kB (2593 bytes)
Hash
f81f79f4269058295eb08459765f3d10
60eaf9370ace39aa798468d98a15d7768713174e
363e0362deae7b5412a53ea38144ae8d7255be760d0504f106392a2eb30d2630

HTTP Headers

GET /images/favicons/apple-touch-icon.png HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868; _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: image/png
Last-Modified: Thu, 20 Mar 2025 06:33:16 GMT
Accept-Ranges: bytes
ETag: "09e42f66199db1:0"
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 2593

www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js

142.250.74.99

200 OK

559 kB

URL GET
www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type

Size
559 kB (558604 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220830
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Mar 2025 04:28:18 GMT
expires: Sat, 21 Mar 2026 04:28:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Mar 2025 16:03:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 10906
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.intercomcdn.com/app~tooltips.64763932.js

54.240.174.98

200 OK

313 kB

URL GET
js.intercomcdn.com/app~tooltips.64763932.js
IP
54.240.174.98:443
ASN
#16509 AMAZON-02

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerAmazon
Subject*.intercomcdn.com
FingerprintD2:4F:FB:78:56:DC:20:7E:66:CC:9B:57:7F:92:C2:FA:50:69:C1:5B
ValidityThu, 31 Oct 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT

File type

Size
313 kB (313055 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app~tooltips.64763932.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://finansforbundet.filemail.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 70999
cross-origin-resource-policy: cross-origin
last-modified: Wed, 19 Mar 2025 14:59:55 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: mbhZsQGBPib9QnNqFusewAqDj.K4yrVn
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Mar 2025 06:01:00 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "fa4c7530fdd66aafce8da59c451275f5"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
age: 5358
x-amz-cf-id: Mj1P3GYcO2BvSr896dPTSFEaf9OLMWa5p_r2M8DTP_DY0YrsSg6uBg==

finansforbundet.filemail.com/Frontend/css/fontspreload.css

178.21.23.181

200 OK

2.4 kB

URL GET
finansforbundet.filemail.com/Frontend/css/fontspreload.css
IP
178.21.23.181:443
ASN
#50673 Serverius Holding B.V.

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2531), with no line terminators
Size
2.4 kB (2365 bytes)
Hash
857dbaaf6449fb7e391608ab105becb9
d94adc7b368cf29450057dacbdfc9d3a9622702e
45090dba444692ce95547f6b22cea91a07718fa7a626fc0f4f55a30daafa2c9e

HTTP Headers

GET /Frontend/css/fontspreload.css HTTP/1.1
Host: finansforbundet.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=cg0yf1sudiryzwojvtu3x43a; resources_cached=en-us.1742542203868
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=604800
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 20 Mar 2025 06:33:12 GMT
Accept-Ranges: bytes
ETag: "044e0f36199db1:0"
Vary: Accept-Encoding
X-Robots-Tag: none
Reporting-Endpoints: csp-endpoint="https://www.filemail.com/api/csp/report"
Report-To: { "group": "csp-endpoint", "max-age": 10886400, "endpoints": [{ "url": "https://www.filemail.com/api/csp/report" }] }
Content-Security-Policy: report-to csp-endpoint
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
Date: Fri, 21 Mar 2025 07:30:03 GMT
Content-Length: 1022

analytics.filemail.com/matomo.php?action_name=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&idsite=1&rec=1&r=423985&h=7&m=30&s=4&url=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&_id=bb5834faeee20778&_idn=1&send_image=0&_refts=0&pv_id=yMS3zF&pf_net=190&pf_srv=146&pf_tfr=94&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024

20.82.124.160

204 No Content

0 B

URL POST
analytics.filemail.com/matomo.php?action_name=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&idsite=1&rec=1&r=423985&h=7&m=30&s=4&url=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&_id=bb5834faeee20778&_idn=1&send_image=0&_refts=0&pv_id=yMS3zF&pf_net=190&pf_srv=146&pf_tfr=94&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024
IP
20.82.124.160:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://finansforbundet.filemail.com/d/yhqywgdkxzccgdp
Certificate
IssuerSectigo Limited
Subject*.filemail.com
Fingerprint1B:28:1A:EF:A4:63:E7:13:C9:A8:87:90:69:B9:12:41:1C:2F:3C:57
ValidityFri, 20 Dec 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /matomo.php?action_name=Finansforbundet%20-%20Presentasjoner%20v%C3%A5rkonferansen%202025&idsite=1&rec=1&r=423985&h=7&m=30&s=4&url=https%3A%2F%2Ffinansforbundet.filemail.com%2Fd%2Fyhqywgdkxzccgdp&_id=bb5834faeee20778&_idn=1&send_image=0&_refts=0&pv_id=yMS3zF&pf_net=190&pf_srv=146&pf_tfr=94&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024 HTTP/1.1
Host: analytics.filemail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://finansforbundet.filemail.com/
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://finansforbundet.filemail.com
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.c4fe=bb5834faeee20778.1742542204.; _pk_ses.1.c4fe=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
vary: Origin
server: Microsoft-IIS/10.0
x-powered-by: PHP/8.2.5
tk: N
access-control-allow-origin: https://finansforbundet.filemail.com
access-control-allow-credentials: true
date: Fri, 21 Mar 2025 07:30:03 GMT
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (106)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML