Report - 62.99.192.205/

Report Overview

Submitted URL
62.99.192.205/
IP
62.99.192.205
ASN
#8412 T-Mobile Austria GmbH
Submitted
2024-05-10 12:17:22
Access
public
Website Title
Willkommen bei der Anwaltsakademie - Anwaltsakademie
Final URL
62.99.192.205/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
196

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
62.99.192.205	unknown	unknown	2019-01-24	2020-04-20	46 kB	6.4 MB	62.99.192.205
my.awak.at	unknown	unknown	2017-04-18	2018-02-01	495 B	840 kB	85.125.89.158

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed
2024-05-10	medium	62.99.192.205	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	62.99.192.205/static/cookie_consent/cookiebar.js	1.8 kB	2024-05-10	2024-05-10
Pretty URL 62.99.192.205/static/cookie_consent/cookiebar.js IP 62.99.192.205 ASN #8412 T-Mobile Austria GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:17:30 Last Seen2024-05-10 14:17:30 Times Seen2 Hash fcc7253a83bf17b2bc2908de0af69615 c8d442845b994004217bab8dcdf41432bbfcd31c ed636642517aa9283283f99263cbf13630344f23c8452b0611a3e838b9a3c4c8 Loading...

	62.99.192.205/	24 kB	2024-05-10	2024-05-10
Pretty URL 62.99.192.205/ IP 62.99.192.205 ASN #8412 T-Mobile Austria GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:17:30 Last Seen2024-05-10 14:17:30 Times Seen1 Hash 615e3794d9d677ddfedc88738fe5a6af 049f923a0140f4f1bdd983dfc4d66d8aed59f76c 6b6f9ba55a0f3f392b39471adc6791199fe2594f4050eb53e55175e445d6fa19 Loading...

	62.99.192.205/	2.1 kB	2024-05-10	2024-05-10
Pretty URL 62.99.192.205/ IP 62.99.192.205 ASN #8412 T-Mobile Austria GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:17:30 Last Seen2024-05-10 14:17:30 Times Seen1 Hash 908f2db354662100a06fcd0bdfec97ae be36e4081020a34d8a5f02a3b342d0496c812d98 818ccdff081d404d67a0b004b1537f6550b8c592cf07ce72cc0949c5e98f7ebc Loading...

	62.99.192.205/static/js/main.min.js	117 kB	2024-05-10	2024-05-10
Pretty URL 62.99.192.205/static/js/main.min.js IP 62.99.192.205 ASN #8412 T-Mobile Austria GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:17:30 Last Seen2024-05-10 14:17:30 Times Seen2 Hash 65f493b50227482552ec2d554bbfec4b e89454c067efbe78416eeb86090d64e1e8f640b5 8fcbeed539ef4269741a340156838f34b45cfe7053b69f5d206889dcff408126 Loading...

HTTP Transactions (99)

URL IP Response Size

62.99.192.205/

62.99.192.205

200 OK

186 B

URL User Request GET HTTP/1.1
62.99.192.205/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
186 B (186 bytes)
Hash
c5ea93a1ff7ebb60593c26bdeb2f3704
cd744904ee609b42be2514359e9674aab00462f6
f7e3d7ff56ba466cc36fb61ea2cafbdfdd38e30f9bebec226bb1a8be7225bed7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:54 GMT
Content-Type: text/html
Content-Length: 186
Connection: keep-alive
Location: https://62.99.192.205/

62.99.192.205/

62.99.192.205

200 OK

78 kB

URL User Request GET HTTP/1.1
62.99.192.205/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1518), with CRLF, LF line terminators
Size
78 kB (77922 bytes)
Hash
c6d1c58c4d51a71f94ad83aac5e4d866
fe38d376f462b1278887b50e1eec80ff9a41da25
273c7804abc898f46a421c4d9d828d770da43b8e196d6f731f4232f0d7c5cc41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 77922
Connection: keep-alive
Expires: Fri, 10 May 2024 12:16:55 GMT
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, private
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Set-Cookie: django_language=de-at; expires=Sat, 10 May 2025 12:16:55 GMT; Max-Age=31536000; Path=/

62.99.192.205/static/css/styles.min.css

62.99.192.205

200 OK

87 kB

URL GET HTTP/1.1
62.99.192.205/static/css/styles.min.css
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
ASCII text, with very long lines (65434)
Size
87 kB (86783 bytes)
Hash
837758de38f8f3d3558148698a90fdc1
05683d19144834cfbd06c18c6e20de5af8e51b72
ec006cd7cd7e25077a748eb89aacfaf077356e2f99016ea8447f236a74a362b3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/styles.min.css HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/css
Content-Length: 86783
Last-Modified: Tue, 10 Oct 2023 12:19:28 GMT
Connection: keep-alive
ETag: "65254150-152ff"
Accept-Ranges: bytes

62.99.192.205/media/WalterMueller.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/WalterMueller.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/WalterMueller.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/Urtz_Christoph.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/Urtz_Christoph.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/Urtz_Christoph.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/guidoKucsko.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/guidoKucsko.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/guidoKucsko.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/static/cookie_consent/cookiebar.js

62.99.192.205

200 OK

1.8 kB

URL GET HTTP/1.1
62.99.192.205/static/cookie_consent/cookiebar.js
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JavaScript source, ASCII text
Size
1.8 kB (1828 bytes)
Hash
fcc7253a83bf17b2bc2908de0af69615
c8d442845b994004217bab8dcdf41432bbfcd31c
ed636642517aa9283283f99263cbf13630344f23c8452b0611a3e838b9a3c4c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/cookie_consent/cookiebar.js HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: application/javascript
Content-Length: 1828
Last-Modified: Mon, 09 Jan 2023 10:22:40 GMT
Connection: keep-alive
ETag: "63bbeaf0-724"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/57

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/57
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/57 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/57/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/media/scheuba_elisabeth_2i0rPQx.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/scheuba_elisabeth_2i0rPQx.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/scheuba_elisabeth_2i0rPQx.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/static/img/trailerWebcast.jpg

62.99.192.205

200 OK

34 kB

URL GET HTTP/1.1
62.99.192.205/static/img/trailerWebcast.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 532x300, components 3
Size
34 kB (33798 bytes)
Hash
a51b1bdc388887a695aa02248ddbe6e8
25092b13f318b8e477f535659784f3bffeeb786b
5a4dca1790ac7124ac6bd226020d22e81904929588b7c38c82e166bc86bf6a97

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/trailerWebcast.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 33798
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-8406"
Accept-Ranges: bytes

62.99.192.205/media/thiery_gottfried.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/thiery_gottfried.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/thiery_gottfried.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/Heinke_Eric_20180906_C6jcfhL.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/Heinke_Eric_20180906_C6jcfhL.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/Heinke_Eric_20180906_C6jcfhL.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/DeixlerHuebner.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/DeixlerHuebner.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/DeixlerHuebner.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/prunbauer_glaser2018.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/prunbauer_glaser2018.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/prunbauer_glaser2018.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/webcasts/image/56

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/56
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/56 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/56/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/55

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/55
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/55 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/55/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/53

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/53
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/53 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/53/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/54

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/54
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/54 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/54/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/fonts/montserrat-v25-latin-regular.woff2

62.99.192.205

200 OK

13 kB

URL GET HTTP/1.1
62.99.192.205/static/fonts/montserrat-v25-latin-regular.woff2
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12708, version 1.0
Size
13 kB (12708 bytes)
Hash
b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/montserrat-v25-latin-regular.woff2 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: application/octet-stream
Content-Length: 12708
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-31a4"
Accept-Ranges: bytes

62.99.192.205/static/js/main.min.js

62.99.192.205

200 OK

117 kB

URL GET HTTP/1.1
62.99.192.205/static/js/main.min.js
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
117 kB (116981 bytes)
Hash
65f493b50227482552ec2d554bbfec4b
e89454c067efbe78416eeb86090d64e1e8f640b5
8fcbeed539ef4269741a340156838f34b45cfe7053b69f5d206889dcff408126

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/main.min.js HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: application/javascript
Content-Length: 116981
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-1c8f5"
Accept-Ranges: bytes

62.99.192.205/static/fonts/montserrat-v25-latin-300.woff2

62.99.192.205

200 OK

13 kB

URL GET HTTP/1.1
62.99.192.205/static/fonts/montserrat-v25-latin-300.woff2
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12580, version 1.0
Size
13 kB (12580 bytes)
Hash
f95c32e0a411f4ca6aaac8a2b94fa34e
5080c3364ddfb436f2717fba8da36226d03d8539
11dd041d74737fc472cedef6bbadd0062120f17ea5e5195eb1490eaaa0475812

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/montserrat-v25-latin-300.woff2 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: application/octet-stream
Content-Length: 12580
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-3124"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_phone.svg

62.99.192.205

200 OK

1.7 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_phone.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1694 bytes)
Hash
749f96aa3897103ad377caddf83f49f2
716bb725fd7d4ebe9892a8167ea07efd1ae87c64
32040a7485bb70d945a5f916b3792a86f0d12131901e0eb232c055f8b017e6fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_phone.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 1694
Last-Modified: Wed, 02 Aug 2023 08:33:01 GMT
Connection: keep-alive
ETag: "64ca14bd-69e"
Accept-Ranges: bytes

62.99.192.205/static/fonts/montserrat-v25-latin-500.woff2

62.99.192.205

200 OK

13 kB

URL GET HTTP/1.1
62.99.192.205/static/fonts/montserrat-v25-latin-500.woff2
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12820, version 1.0
Size
13 kB (12820 bytes)
Hash
3f2f6d9e64a95a40ea5dedfc91f42a95
9cd9f5a2f86f1d42390141d91619a0aa41a276b7
ed121b1a8fbf30998a4ed0a7c8343abe9091ac4744f1c24b602b5d3f962bdb78

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/montserrat-v25-latin-500.woff2 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: application/octet-stream
Content-Length: 12820
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-3214"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_mail.svg

62.99.192.205

200 OK

905 B

URL GET HTTP/1.1
62.99.192.205/static/img/icon_mail.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
905 B (905 bytes)
Hash
16b2d68a9a496a184f5465f62cbc7f70
c5ff5d3c21a022070f47be40dbcbc6a971868b0d
b6fe186a599872367f14cff023281e3e41f3c77098042d0fc65374c996886a7c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_mail.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 905
Last-Modified: Wed, 02 Aug 2023 08:33:01 GMT
Connection: keep-alive
ETag: "64ca14bd-389"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_login.svg

62.99.192.205

200 OK

1.2 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_login.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1218 bytes)
Hash
3653529ca12a85da2ca801aedd86b94c
8e9f9f4b613be822f68fb22fac1d232c849949ca
43660a7fc46f8461010804cd1416254d699f82c9dd828b6078d51ed2a2fee8eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_login.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 1218
Last-Modified: Wed, 02 Aug 2023 08:33:01 GMT
Connection: keep-alive
ETag: "64ca14bd-4c2"
Accept-Ranges: bytes

62.99.192.205/static/img/linkedIn-bug.gif

62.99.192.205

200 OK

129 B

URL GET HTTP/1.1
62.99.192.205/static/img/linkedIn-bug.gif
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
GIF image data, version 89a, 29 x 25
Size
129 B (129 bytes)
Hash
69d818636686cf8576557d9deec8e0bc
1d85f0abfe302032d5b4f2e055a4bf961908e196
a12e7034c8558757baae01f8215fb030763ce572521cc2d1277c498250f2dcef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/linkedIn-bug.gif HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/gif
Content-Length: 129
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-81"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_fb.svg

62.99.192.205

200 OK

1.7 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_fb.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1669 bytes)
Hash
8b41c329e930d9cbfc9a73f1207b6e74
dc855df912f3d9b366f21c997fff9865b6e401cd
2ca50efea873d09143c0c83fe0d90676ff196b95007831c64317314f9bedeba6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_fb.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 1669
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-685"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_ig.png

62.99.192.205

200 OK

2.7 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_ig.png
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced
Size
2.7 kB (2745 bytes)
Hash
d1a3f2864d62e34c241e49cab04bdae2
1edb0fd248be4c5a84a3dabc531bae119cf22185
972a3537ec6eccb5778b3cbfd08ee916e2ac1833c53cbacefd12dc1ca058d783

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_ig.png HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/png
Content-Length: 2745
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-ab9"
Accept-Ranges: bytes

62.99.192.205/static/img/awak_logo.svg

62.99.192.205

200 OK

4.9 kB

URL GET HTTP/1.1
62.99.192.205/static/img/awak_logo.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
4.9 kB (4928 bytes)
Hash
29c9852df6422331c906c8cded195ff9
7c2ce1664bec358b6da47f439d3d5426fb3b2dd0
991ca9b01f50ec3eb913a43e251133dcc11e33c7cb4299adc13a5e8658c54e79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/awak_logo.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 4928
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-1340"
Accept-Ranges: bytes

62.99.192.205/media/slider_hp_r%C3%BCckblick_liegenschaften_2024.jpg

62.99.192.205

200 OK

57 kB

URL GET HTTP/1.1
62.99.192.205/media/slider_hp_r%C3%BCckblick_liegenschaften_2024.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 2500x700, components 3
Size
57 kB (56869 bytes)
Hash
8fe4c956faeea3f69ab6b56fd478d73a
8377e2d2a38675808919e313a7b4e9638c572bf7
11187d47669f563e68d3c40e693b5812549edf83ddf50963b763b6e1b754f136

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/slider_hp_r%C3%BCckblick_liegenschaften_2024.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 56869
Last-Modified: Tue, 30 Apr 2024 11:31:01 GMT
Connection: keep-alive
ETag: "6630d675-de25"
Accept-Ranges: bytes

62.99.192.205/media/slider_hp_Zivilrechtstag_2024-01.jpg

62.99.192.205

200 OK

42 kB

URL GET HTTP/1.1
62.99.192.205/media/slider_hp_Zivilrechtstag_2024-01.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 2500x700, components 3
Size
42 kB (41573 bytes)
Hash
de02985315d80c708f3089bc3e7cfe18
86e70c75feb86fa6ee5f209d8096860613b0b545
fa2922931304e5764014cf11438cdbf5cd2ac3d8f7cbffac93a1e8af196fd321

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/slider_hp_Zivilrechtstag_2024-01.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 41573
Last-Modified: Tue, 30 Apr 2024 11:33:58 GMT
Connection: keep-alive
ETag: "6630d726-a265"
Accept-Ranges: bytes

62.99.192.205/media/slider_hp_ZR_Must_Know.jpg

62.99.192.205

200 OK

47 kB

URL GET HTTP/1.1
62.99.192.205/media/slider_hp_ZR_Must_Know.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 2500x700, components 3
Size
47 kB (46580 bytes)
Hash
7d360b42ee01eff455162c64274337ed
4948f8c049578d4aa2a0117ad8659f42fb92ab88
2716faeba610eeaeb1620daa5b310fc1afbf6e15dca2342c9c9441b9cb6f9ff2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/slider_hp_ZR_Must_Know.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 46580
Last-Modified: Tue, 30 Apr 2024 11:39:19 GMT
Connection: keep-alive
ETag: "6630d867-b5f4"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/52

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/52
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/52 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/52/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/51

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/51
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/51 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/51/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/50

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/50
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/50 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/50/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/49

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/49
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/49 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/49/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/43

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/43
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/43 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/43/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/44

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/44
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/44 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/44/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/media/Baden_2024_slider_PYQcjeG.jpg

62.99.192.205

200 OK

76 kB

URL GET HTTP/1.1
62.99.192.205/media/Baden_2024_slider_PYQcjeG.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 2500x700, components 3
Size
76 kB (75666 bytes)
Hash
0257cf8834178825bba8b22da791221b
54ae9efee02b0e4b61ae3e971905450d8334e988
af32294304a0179d5235896f9db488ff7ea0a21b059cba15e98f7860b03f3dfa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/Baden_2024_slider_PYQcjeG.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 75666
Last-Modified: Tue, 19 Mar 2024 14:19:30 GMT
Connection: keep-alive
ETag: "65f99ef2-12792"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/42

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/42
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/42 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/42/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/41

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/41
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/41 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/41/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/18

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/18
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/18 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/18/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/19

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/19
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/19 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/19/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/40

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/webcasts/image/40
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/40 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /webcasts/image/40/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/57/

62.99.192.205

200 OK

91 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/57/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
91 kB (90756 bytes)
Hash
a0312aae0c485dbf3d45a491a8fca879
e1f26f3d65c73333389b25de60d13d5fa697a566
3661263a40371fa42b4e93468b87887d29672d8f93ce04ac0a1ee21346b2879f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/57/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 90756
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/55/

62.99.192.205

200 OK

196 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/55/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
196 kB (196122 bytes)
Hash
cde1eab138f2ed0d24ae3496c880a91c
10c62301800f0cb64870c3dc83cfd9581d38e6d9
e565ecdb0542660f5ed4a32f4ad5228db17f33fa0495a2aa0a2fa5492113e514

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/55/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 196122
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/52/

62.99.192.205

200 OK

196 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/52/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
196 kB (196122 bytes)
Hash
cde1eab138f2ed0d24ae3496c880a91c
10c62301800f0cb64870c3dc83cfd9581d38e6d9
e565ecdb0542660f5ed4a32f4ad5228db17f33fa0495a2aa0a2fa5492113e514

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/52/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 196122
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/56/

62.99.192.205

200 OK

217 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/56/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
217 kB (217109 bytes)
Hash
0f5926448c80158cc3d61dc39f5a53f0
40e67430c6560eb32fd25df482f36519c4b11615
d346abd9c1edfae39c00a44f3a64e94e29fe98eab0a52853bd58c0a24c2cb7d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/56/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 217109
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/49/

62.99.192.205

200 OK

116 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/49/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
116 kB (115654 bytes)
Hash
8d2ab626252c70e974cb3e0402354e39
6612f5efb4454c629d4cca8674d698af67cae535
7ec2d88523431ce6c034b4e4f49c8bccb21c2520d1e2ede316b45b94a0127628

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/49/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 115654
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/53/

62.99.192.205

200 OK

196 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/53/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
196 kB (196122 bytes)
Hash
cde1eab138f2ed0d24ae3496c880a91c
10c62301800f0cb64870c3dc83cfd9581d38e6d9
e565ecdb0542660f5ed4a32f4ad5228db17f33fa0495a2aa0a2fa5492113e514

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/53/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 196122
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/51/

62.99.192.205

200 OK

196 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/51/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
196 kB (196122 bytes)
Hash
cde1eab138f2ed0d24ae3496c880a91c
10c62301800f0cb64870c3dc83cfd9581d38e6d9
e565ecdb0542660f5ed4a32f4ad5228db17f33fa0495a2aa0a2fa5492113e514

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/51/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 196122
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/hero_links.svg

62.99.192.205

200 OK

635 B

URL GET HTTP/1.1
62.99.192.205/static/img/hero_links.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
635 B (635 bytes)
Hash
2edd73a6d0adcdfd58329fa2cb539bbb
b10289366effec12f0a6d92a75f134f3a8391c3f
d27ac40a4c4ceafd8e63909c2f11b3ae1e1edfeb3daa83551129d024a683f86f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/hero_links.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 635
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-27b"
Accept-Ranges: bytes

62.99.192.205/static/img/hero_rechts.svg

62.99.192.205

200 OK

635 B

URL GET HTTP/1.1
62.99.192.205/static/img/hero_rechts.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
635 B (635 bytes)
Hash
9698ddf93bb926fa4ba07d7f33f4b160
03ebd146c0e16915e7649a98fde36b528002ae6c
ac477a6850776adff68380c203d1bdff9bed5322ba50f9511a1fc4258d54be36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/hero_rechts.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 635
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-27b"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_lupe_white.svg

62.99.192.205

200 OK

1.4 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_lupe_white.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1351 bytes)
Hash
334f2a21599ce6b115db604009d2a229
9b3c070e5fa2272868024bb001b39a5824ea6a40
7c3f68a560b0dc7c36d43800a63ef558fd3ff5edbacf098ef422144974445227

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_lupe_white.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 1351
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-547"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_i_white.svg

62.99.192.205

200 OK

1.0 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_i_white.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1038 bytes)
Hash
8dca25b3f10d6b615a92cd92b17e13f7
7f2b99a4ea1c520e9a66be94eb18dcba2475fc93
b0f7d6a7dce142374ed91b6a14aa518c4c1984035103b70bc0e9795585e94153

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_i_white.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 1038
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-40e"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/54/

62.99.192.205

200 OK

196 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/54/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
196 kB (196122 bytes)
Hash
cde1eab138f2ed0d24ae3496c880a91c
10c62301800f0cb64870c3dc83cfd9581d38e6d9
e565ecdb0542660f5ed4a32f4ad5228db17f33fa0495a2aa0a2fa5492113e514

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/54/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 196122
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818611

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818611
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818611 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818611/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818522

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818522
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818522 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818522/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818495

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818495
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818495 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818495/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/icon_pfeil_links.svg

62.99.192.205

200 OK

949 B

URL GET HTTP/1.1
62.99.192.205/static/img/icon_pfeil_links.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
949 B (949 bytes)
Hash
15789972647bde05c12c93ada5521799
7c581554906f6739792fb30da32cb8cb67a0020d
7b0ac803400cbfe5ea8a3850009ec0fc4dd0c5194d0a4b24103151470b255c58

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_pfeil_links.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 949
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-3b5"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_pfeil_rechts.svg

62.99.192.205

200 OK

950 B

URL GET HTTP/1.1
62.99.192.205/static/img/icon_pfeil_rechts.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
950 B (950 bytes)
Hash
e100c372257405d4bd907dad7f42929c
1a61ba4873d4382377c2e6754848e34b76afcadf
01d88aa23c541fce67a9aca414a65e0374dc46eb206e1bb7c1304b090e1df198

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_pfeil_rechts.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/svg+xml
Content-Length: 950
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-3b6"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/50/

62.99.192.205

200 OK

116 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/50/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 890x502, components 3
Size
116 kB (115654 bytes)
Hash
8d2ab626252c70e974cb3e0402354e39
6612f5efb4454c629d4cca8674d698af67cae535
7ec2d88523431ce6c034b4e4f49c8bccb21c2520d1e2ede316b45b94a0127628

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/50/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 115654
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/44/

62.99.192.205

200 OK

230 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/44/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
230 kB (229756 bytes)
Hash
ef31301cae479527d356d13e2ce59b76
4c54981ae407b96d0294f288d5fd4cf861e6dcdf
24979ccb35912fe01bbe03b08e691143af7fd9f0d92ff409f42b5585db48f156

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/44/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 229756
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818522/

62.99.192.205

200 OK

85 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818522/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 430x540, components 3
Size
85 kB (85207 bytes)
Hash
21d83ab43c5659bd1af51dd4fe651af4
36ab0e749738a1610c84e450ba0d0f924c80132e
cd8a619dabefb01eb98dbf3600d00550549dfb7214847792809dc13ef849c51f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818522/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 85207
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/43/

62.99.192.205

200 OK

405 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/43/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
405 kB (404619 bytes)
Hash
2b85d511c8fe938fb7c48992c0eb355e
eba4fe120f9e4f9f39ee2ae61a3395fc25c614a1
310c81b935ce0b33ee55dd4e15b8285cc68cf061cf08f9a0edd697563720d377

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/43/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 404619
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

my.awak.at/trailer/OnlineSeminare-sdaf8asd%C3%9F-0iassa-dsd-7908asdf.mp4

85.125.89.158

206 Partial Content

840 kB

URL GET HTTP/1.1
my.awak.at/trailer/OnlineSeminare-sdaf8asd%C3%9F-0iassa-dsd-7908asdf.mp4
IP
85.125.89.158:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
840 kB (839731 bytes)
Hash
0d9f12f11e20aebbd9905b5f5737fb69
cf8858cec61b23278b3a8f5dbcd072e8affee068
b3f6875a7188f452ca6852be505878aff316b397fe615870115591f9379eb3fb

HTTP Headers

GET /trailer/OnlineSeminare-sdaf8asd%C3%9F-0iassa-dsd-7908asdf.mp4 HTTP/1.1
Host: my.awak.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Content-Type: video/mp4
Last-Modified: Tue, 09 Feb 2021 08:34:47 GMT
Accept-Ranges: bytes
ETag: "4fa5ff6cbefed61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Length: 66293257
Content-Range: bytes 0-66293256/66293257

62.99.192.205/webcasts/image/42/

62.99.192.205

200 OK

308 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/42/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
308 kB (307946 bytes)
Hash
698192d80f2fbe8f5212ad0b9e522f9b
3cf1cd7a1321d7a2fa610c9ae2e893f35c9ba89c
c6bc52138eb708404fa65e66b51857f98f7305b01ea9e7b76d443ae8ec6da838

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/42/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 307946
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818495/

62.99.192.205

200 OK

55 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818495/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
55 kB (54557 bytes)
Hash
5b104a749fbbc06c36b3169bd52bd979
b998a5257b6952c0017500cb176394c3fbf24666
b9116434b7071f80772833840f38a1b0aed74a5afb94c9ea41d267762a8c7dbb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818495/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 54557
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/media/scheuba_elisabeth_2i0rPQx.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/scheuba_elisabeth_2i0rPQx.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/scheuba_elisabeth_2i0rPQx.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/media/guidoKucsko.jpg

62.99.192.205

404 Not Found

170 B

URL GET HTTP/1.1
62.99.192.205/media/guidoKucsko.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
170 B (170 bytes)
Hash
6c41daf040690d9b41dc6193f3fa232b
104248db660dbfece658dee7f45d65ffd0369163
4e1b3b07da7f7a68b07042a78ca7c18e9e2738ebb24832a4bd6673729a7833ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /media/guidoKucsko.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html
Content-Length: 170
Connection: keep-alive

62.99.192.205/webcasts/image/18/

62.99.192.205

200 OK

275 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/18/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
275 kB (274920 bytes)
Hash
bfcfc9f3408f53082167a5280b6745ef
464f20a096828145b1d3603ba1eaabb07b96e2c0
ce26d73d2d734932859ab5b48cc6221ac918f4d17419bf4339dc7b08fc768012

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/18/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 274920
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/41/

62.99.192.205

200 OK

456 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/41/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
456 kB (455969 bytes)
Hash
74f667f6daa826fd180cd6d77a8251a7
7b6198aea6d75322328d210260c455c6ea8dad13
b3cb16a7f3a9b601fee0db559e32c7ea37038333efb8e2f5b9a33bd541f606e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/41/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 455969
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/icon_lupe.svg

62.99.192.205

200 OK

1.1 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_lupe.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1074 bytes)
Hash
24074a5b4c9d6ad97cb8270121742d51
a6f187bc107b587fd4f85dcdbdc7da8f7408742b
29bb6596821b05b8078244126af0bc6cd387c8b50b57b21c07d8728c61f5f992

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_lupe.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/svg+xml
Content-Length: 1074
Last-Modified: Wed, 02 Aug 2023 08:33:01 GMT
Connection: keep-alive
ETag: "64ca14bd-432"
Accept-Ranges: bytes

62.99.192.205/webcasts/image/19/

62.99.192.205

200 OK

590 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/19/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
590 kB (590284 bytes)
Hash
512d96730297974f5f97884f42c36fda
a1ac4ca2caee08509aec1a4e16e40f3926a11b24
df749132dc2cfb793315cbbe75f8c9ec15904c5092c19e2488542268a6245406

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/19/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 590284
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818499

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818499
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818499 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818499/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818537

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818537
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818537 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818537/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/webcasts/image/40/

62.99.192.205

200 OK

272 kB

URL GET HTTP/1.1
62.99.192.205/webcasts/image/40/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, baseline, precision 8, 890x502, components 3
Size
272 kB (271769 bytes)
Hash
3f3d4590f3e0eb23b232dc00d9e06390
283aa9d28665a06e8e13262aa395786920b3e70a
a58065db61fa7d4c851385ae1fcad63c98fa70bd01be6f644b6c196acda5a85b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /webcasts/image/40/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 271769
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818606

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818606
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818606 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818606/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818598

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818598
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818598 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818598/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818528

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818528
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818528 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818528/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/screen_pano.gif

62.99.192.205

200 OK

17 kB

URL GET HTTP/1.1
62.99.192.205/static/img/screen_pano.gif
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
GIF image data, version 89a, 600 x 367
Size
17 kB (17182 bytes)
Hash
4d70cb546a3f39a1cda6abb750cf39e8
e8e2ddce5d26d39a65e667e9ab3856f566f54e46
f19eae47c6fdfa912bf35bae45b28e3cda2399e7bf2df50800bf1b33c1bf134a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/screen_pano.gif HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/gif
Content-Length: 17182
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-431e"
Accept-Ranges: bytes

62.99.192.205/seminare/image/48818561

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818561
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818561 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818561/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818488

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818488
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818488 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818488/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818584

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818584
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818584 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818584/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818665

62.99.192.205

301 Moved Permanently

0 B

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818665
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818665 HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /seminare/image/48818665/
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/counter.jpg

62.99.192.205

200 OK

927 kB

URL GET HTTP/1.1
62.99.192.205/static/img/counter.jpg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Macintosh), datetime=2018:08:14 13:26:50], baseline, precision 8, 2500x240, components 4
Size
927 kB (927007 bytes)
Hash
707eb5ac42d5d8ee0189dc6d0afb1c31
3bd471e1d8f8d416792b1b6b3903095512be74f4
fb8c66efc6a05b96ef60490defb20a1d223adaac20e8f14ad91d4d1aaba4a9c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/counter.jpg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 927007
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-e251f"
Accept-Ranges: bytes

62.99.192.205/static/img/icon_newsletter_white.svg

62.99.192.205

200 OK

1.6 kB

URL GET HTTP/1.1
62.99.192.205/static/img/icon_newsletter_white.svg
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1596 bytes)
Hash
1bc8c802b1c1439b70fd386d03190a6c
6604de108edb3992d9df65656a1465797e1e555d
7c14197f95f1a84be25f7ac49b5cbd642d59abd9129c9efaf725a03797695bf1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/icon_newsletter_white.svg HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://62.99.192.205/static/css/styles.min.css
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/svg+xml
Content-Length: 1596
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-63c"
Accept-Ranges: bytes

62.99.192.205/seminare/image/48818499/

62.99.192.205

200 OK

53 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818499/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
53 kB (53187 bytes)
Hash
ebef9d4e15c146d1363b9fad9167a19f
ba90ccf65779dbc50605ecba8ac3e19ebf77707f
4552d43cdf2106388c7a0c055ed6c9e48c38da1afabceeed021b8eb41ebc17b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818499/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 53187
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818537/

62.99.192.205

200 OK

42 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818537/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
42 kB (42421 bytes)
Hash
17955a37fcbe131f9c52401da4671e94
da5bc9218678df5f07d6be19753a5ecfb2fb3779
154ecc4214a7ca3a4f673d1e8c7fd3b46a85378eac94f9ea7c1078ba6d538630

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818537/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 42421
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818606/

62.99.192.205

200 OK

37 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818606/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
37 kB (37385 bytes)
Hash
bb10ba701b6e1ee31b262b1e9e1e3ee6
813d83d0da43afdad0214dfc8098fb8e42ac25cd
8e5c55e1ef65130bd3fb43fa6ab4a910da7d1ef6202510454769961509ec5cf3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818606/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 37385
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818598/

62.99.192.205

200 OK

114 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818598/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 430x540, components 3
Size
114 kB (113734 bytes)
Hash
adcd9aec169ae69c0d50a2d563a9aa95
f2ea81873a89bcb5eeaf3756de59018af28c4ed9
31fdc81ae0a5c3376f56a9758f57756cdfe369c26a86887c412327242e6ee9b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818598/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 113734
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818561/

62.99.192.205

200 OK

43 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818561/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
43 kB (42693 bytes)
Hash
33f3decd103f1cdacc5c79b6a9adefe4
0a6f5c86d4ca64411d0007a872acc674be71624b
e00fdf37a650cf0592e8f904e1ad9c7bc6b46619b57d448e6e49087c1276c709

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818561/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 42693
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818528/

62.99.192.205

200 OK

50 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818528/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
50 kB (49788 bytes)
Hash
98793ebdd6af888531d98a50432a4c8f
e1fa495d2a0b5c37cb837cf6a6ccf9a7c81c2ec4
c84628b8553512445b8d2616302a83d040d64473f926decd121e1457b05badcb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818528/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 49788
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818488/

62.99.192.205

200 OK

68 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818488/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
68 kB (67888 bytes)
Hash
bc5d513e743e0079ed2ac2e53d3e4147
f596b22e9f8de09b253c89bba532d9063004e108
46cd56c789b160a81b72bb0c68db175e8d82f20bbcd69c5ec98af8c10999829e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818488/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 67888
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818665/

62.99.192.205

200 OK

59 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818665/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 430x540, components 3
Size
59 kB (58568 bytes)
Hash
6b85a9039a642d541e290e8640b01fc3
4ccb600c6f5ded94bb9b9892b9528563fb166c9f
393185605479d411e5ffa8725efa5c20bce02dbbc631f583b3c7bd0f66c0419c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818665/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 58568
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/seminare/image/48818584/

62.99.192.205

200 OK

113 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818584/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, progressive, precision 8, 430x540, components 3
Size
113 kB (113176 bytes)
Hash
b3e6da97350e6f39f0133245d6337aad
27bec4bf322e4963d78c8968f8626310c318474a
8b127dafdadc1cd1599d22144bdc9df99c4c094f23439c6d5494141af2c39ec0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818584/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/jpeg
Content-Length: 113176
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

62.99.192.205/static/img/favicon/android-icon-192x192.png

62.99.192.205

200 OK

6.3 kB

URL GET HTTP/1.1
62.99.192.205/static/img/favicon/android-icon-192x192.png
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6250 bytes)
Hash
609a54e0108947c040ade8989d1198b5
e3ad9528994cfedc5fe0b5121beeaf694e742672
8ab77c93da6127dd9dc7feaf9fd58815e26c287586fe9b02acd52e66d3add8c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/favicon/android-icon-192x192.png HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/png
Content-Length: 6250
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-186a"
Accept-Ranges: bytes

62.99.192.205/static/img/favicon/favicon-16x16.png

62.99.192.205

200 OK

491 B

URL GET HTTP/1.1
62.99.192.205/static/img/favicon/favicon-16x16.png
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
491 B (491 bytes)
Hash
e006c932995a756add394a7104d0c315
b0f337f817b3be68f51eb1fc7aef4acc7ce4fbd3
a49abcf9fde871040852ea6e77048bcf0bb846020c05ae98705b837af350c111

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/img/favicon/favicon-16x16.png HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:57 GMT
Content-Type: image/png
Content-Length: 491
Last-Modified: Thu, 05 Jan 2023 09:15:06 GMT
Connection: keep-alive
ETag: "63b6951a-1eb"
Accept-Ranges: bytes

62.99.192.205/seminare/image/48818611/

62.99.192.205

200 OK

54 kB

URL GET HTTP/1.1
62.99.192.205/seminare/image/48818611/
IP
62.99.192.205:443
ASN
#8412 T-Mobile Austria GmbH

Requested by
https://62.99.192.205/
Certificate
IssuerGlobalSign nv-sa
Subject*.awak.at
FingerprintC8:AB:26:97:FF:0D:F5:B1:43:3C:C7:88:23:F4:6A:C0:7B:03:6F:D3
ValidityMon, 04 Mar 2024 05:52:20 GMT - Sat, 05 Apr 2025 05:52:19 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=430], baseline, precision 8, 430x540, components 3
Size
54 kB (53606 bytes)
Hash
977896911be250ae0d7a7e832560061d
86979dc228d7dedcbf04eddc95523908e116f1aa
d7bd5883ee7fdea9af8ae590335e251fcb4b1e88888d2998fbc4ad1bf9f64dbe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /seminare/image/48818611/ HTTP/1.1
Host: 62.99.192.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://62.99.192.205/
DNT: 1
Connection: keep-alive
Cookie: django_language=de-at
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Fri, 10 May 2024 12:16:56 GMT
Content-Type: image/jpeg
Content-Length: 53606
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Vary: Cookie
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (99)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size