Report - dentallabor-morgenstern.de/

Report Overview

Submitted URL
dentallabor-morgenstern.de/
IP
217.160.0.217
ASN
#8560 IONOS SE
Submitted
2022-10-04 09:37:04
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.160.51.228
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
dentallabor-morgenstern.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	714 kB	217.160.0.217
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	dentallabor-morgenstern.de/	Phishing
2022-10-04	medium	dentallabor-morgenstern.de/media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8	Phishing
2022-10-04	medium	dentallabor-morgenstern.de/media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8	Phishing
2022-10-04	medium	dentallabor-morgenstern.de/templates/dentalv1/css/custom.css?1507106655	Phishing
2022-10-04	medium	dentallabor-morgenstern.de/templates/dentalv1/images/rollout.jpg?30	Phishing
2022-10-04	medium	dentallabor-morgenstern.de/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	dentallabor-morgenstern.de/media/system/js/mootools-core.js?4aa50e94712eb760b33d1f23329277a8	84 kB	2023-03-07	2024-04-19
Pretty URL dentallabor-morgenstern.de/media/system/js/mootools-core.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-19 17:50:59 Times Seen1651 Hash dae9bedb881e4fa30a39d88aae444a0d c7b66b70133c005c8283f3e1843db92769f71d38 b0fc8a4f81d13b1f3bc1843a6f2d43f46e5c9128837096b8d53f2360b8daec18 Loading...

	dentallabor-morgenstern.de/media/system/js/core.js?4aa50e94712eb760b33d1f23329277a8	8.7 kB	2023-03-07	2024-04-19
Pretty URL dentallabor-morgenstern.de/media/system/js/core.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-04-19 08:50:37 Times Seen1361 Hash e01099c2824b8fc4a435611089253cf7 ac8338f1566be54e957c123c863a97ca8d6f3ada 98333312a99b4c67911a1c1d4bddda30653715ffa23ea460fe385fa1987b39ba Loading...

	dentallabor-morgenstern.de/media/jui/js/bootstrap.min.js?4aa50e94712eb760b33d1f23329277a8	29 kB	2023-03-07	2024-04-15
Pretty URL dentallabor-morgenstern.de/media/jui/js/bootstrap.min.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-15 19:31:38 Times Seen1839 Hash a125594de09167bd2e9015d790029a64 b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692 b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 06:04:20 Times Seen36969747 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	dentallabor-morgenstern.de/	70 B	2023-03-07	2024-03-21
Pretty URL dentallabor-morgenstern.de/ IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:36 Last Seen2024-03-21 13:38:11 Times Seen156 Hash d4b486c1e71ae2970f91c805a1983e30 93c03b18e7352012288db23e47510d4665b51cdc b7357d1b9193a3882810e3746361d5506993a905c5574d76acd9dedecd1a72fc Loading...

	dentallabor-morgenstern.de/media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8	10 kB	2023-03-07	2024-04-19
Pretty URL dentallabor-morgenstern.de/media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 17:56:33 Times Seen37101 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	dentallabor-morgenstern.de/media/jui/js/jquery.min.js?4aa50e94712eb760b33d1f23329277a8	98 kB	2023-03-07	2024-04-15
Pretty URL dentallabor-morgenstern.de/media/jui/js/jquery.min.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-15 19:47:38 Times Seen2712 Hash 48a197817927a6eda6f531064f1dba71 5ba19dcca2e2d7ac659af0fbc97dc99e505c498b 05d31c760df3e6f0c64e3da1cd299e5f73df51c974c6528a60d0685859bbc1ba Loading...

	dentallabor-morgenstern.de/media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8	21 B	2023-03-07	2024-04-19
Pretty URL dentallabor-morgenstern.de/media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8 IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-19 17:50:59 Times Seen4660 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	dentallabor-morgenstern.de/	1 B	2023-03-07	2024-04-20
Pretty URL dentallabor-morgenstern.de/ IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-20 02:38:32 Times Seen68528 Hash 68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b Loading...

	dentallabor-morgenstern.de/	20 B	2023-03-07	2024-04-14
Pretty URL dentallabor-morgenstern.de/ IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2024-04-14 20:48:19 Times Seen1270 Hash 3179f2255b046d5f2e9a71e365287bef 462e90dd5487b4c692a7c609b7b78f1b93496343 844a36c2c43704c5ae846d0f52093463bc6e84d547d04528eefb6313129e570f Loading...

	dentallabor-morgenstern.de/	68 B	2023-03-07	2024-03-21
Pretty URL dentallabor-morgenstern.de/ IP 217.160.0.217 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:36 Last Seen2024-03-21 13:38:12 Times Seen160 Hash df0ddca5ba07eb0df9bd470218bbb97c 665960db91b497efd3946a9b8366774f27c6d2eb 42f44489b85596437e943cad286cf0e5467475c4818b611becdb9a065314a42f Loading...

HTTP Transactions (39)

URL IP Response Size

dentallabor-morgenstern.de/

217.160.0.217

301 Moved Permanently

0 B

URL HTTP/1.1
dentallabor-morgenstern.de/
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Tue, 04 Oct 2022 09:36:53 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: 633ee82aa98310ae221dd5afd9b7d045=b6b20c712862c789b365230bce3b7f26; path=/; secure; HttpOnly
Location: https://dentallabor-morgenstern.de/
Last-Modified: Tue, 04 Oct 2022 09:36:53 GMT

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2591
Expires: Tue, 04 Oct 2022 10:20:04 GMT
Date: Tue, 04 Oct 2022 09:36:53 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 08:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f83SZ4EFN9JK4CIsUzYnyYbMKB78OMb8n-SN0wzBva1HnZ8rj6g25Q==
Age: 2989

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hfwe8CNsagB3YdE5dRFxO_vO6CkgDk7eZZBnYWAjmJzrxoeQT7GIkQ==
age: 14906
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:36:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P1_bJdNEv6fkXonD60SGIs91MqhWFH1xZDmfDJebj8pTu3eIlTdSZQ==
Age: 440

dentallabor-morgenstern.de/media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

21 B

URL HTTP/2
dentallabor-morgenstern.de/media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
21 B (21 bytes)
Hash
e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/js/jquery-noconflict.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 21
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "15-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6485
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:36:54 GMT
Last-Modified: Tue, 04 Oct 2022 07:48:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

dentallabor-morgenstern.de/media/system/js/mootools-core.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

84 kB

URL HTTP/2
dentallabor-morgenstern.de/media/system/js/mootools-core.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (785)
Size
84 kB (83893 bytes)
Hash
dae9bedb881e4fa30a39d88aae444a0d
c7b66b70133c005c8283f3e1843db92769f71d38
b0fc8a4f81d13b1f3bc1843a6f2d43f46e5c9128837096b8d53f2360b8daec18

HTTP Headers

GET /media/system/js/mootools-core.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 83893
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "147b5-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/system/js/core.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

8.7 kB

URL HTTP/2
dentallabor-morgenstern.de/media/system/js/core.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (8729)
Size
8.7 kB (8735 bytes)
Hash
e01099c2824b8fc4a435611089253cf7
ac8338f1566be54e957c123c863a97ca8d6f3ada
98333312a99b4c67911a1c1d4bddda30653715ffa23ea460fe385fa1987b39ba

HTTP Headers

GET /media/system/js/core.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 8735
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "221f-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/system/css/system.css

217.160.0.217

200 OK

881 B

URL HTTP/2
dentallabor-morgenstern.de/templates/system/css/system.css
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
881 B (881 bytes)
Hash
8ee95dfc37ddc5166c5338bf47ee0522
a92ff67aaed54afb634d2155497a57b39ad9cc59
8cb8ccfbfee345a47596d6c58ed14ccf7208ee1746243005f2fe9e7b660ae90c

HTTP Headers

GET /templates/system/css/system.css HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 881
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "371-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/jui/js/bootstrap.min.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

29 kB

URL HTTP/2
dentallabor-morgenstern.de/media/jui/js/bootstrap.min.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (28972)
Size
29 kB (29126 bytes)
Hash
a125594de09167bd2e9015d790029a64
b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692
b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2

HTTP Headers

GET /media/jui/js/bootstrap.min.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 29126
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "71c6-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

10 kB

URL HTTP/2
dentallabor-morgenstern.de/media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/jui/js/jquery-migrate.min.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 10056
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "2748-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/system/js/mootools-more.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

237 kB

URL HTTP/2
dentallabor-morgenstern.de/media/system/js/mootools-more.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (2903)
Size
237 kB (236825 bytes)
Hash
471d5cbdf6786206310da0448076a9ea
a5124b0be4decb1ebca72e44531c3da85f0170f6
9db43e4a687084df93038c3d02cc4c149dff1210727059b82a7aac112a486eda

HTTP Headers

GET /media/system/js/mootools-more.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 236825
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "39d19-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/system/css/general.css

217.160.0.217

200 OK

2.7 kB

URL HTTP/2
dentallabor-morgenstern.de/templates/system/css/general.css
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
2.7 kB (2717 bytes)
Hash
77be09820e06944f7a76bd1a89dd7005
2cf28537438ccc9fa90badf855e51cecf90448d9
a4fe69d31cccbab5e8f5a78b142075661a5247464eb6a828b71ad6c0fbd02beb

HTTP Headers

GET /templates/system/css/general.css HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 2717
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "a9d-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/dentalv1/css/custom.css?1507106655

217.160.0.217

200 OK

241 B

URL HTTP/2
dentallabor-morgenstern.de/templates/dentalv1/css/custom.css?1507106655
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text, with CRLF line terminators
Size
241 B (241 bytes)
Hash
47dab10b132b78c6a55c9c962fca6ab3
c4c58ef20c1ba2d75bf9f4984be13e87f411041a
64a36650147ca5643734c3208a313520465831ba8d1c89a768a2179ec989ba31

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/dentalv1/css/custom.css?1507106655 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 241
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Wed, 04 Oct 2017 07:37:19 GMT
etag: "f1-55ab3ad779b58"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/dentalv1/css/template.css?1507106655

217.160.0.217

200 OK

57 kB

URL HTTP/2
dentallabor-morgenstern.de/templates/dentalv1/css/template.css?1507106655
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (1165), with CRLF line terminators
Size
57 kB (56958 bytes)
Hash
2f938a1a9bdb582c7cd364fdc3080772
16f2655b6038c0bd96e7af94cd86655d7181185f
2db6fb8a8b199561713c13aa3e852b8ee8db746a587c51ea68abbdf57aa8311d

HTTP Headers

GET /templates/dentalv1/css/template.css?1507106655 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 56958
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Wed, 04 Oct 2017 07:52:43 GMT
etag: "de7e-55ab3e48a3315"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/images/arzt3.jpg

217.160.0.217

200 OK

53 kB

URL HTTP/2
dentallabor-morgenstern.de/images/arzt3.jpg
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON D700, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2, software=Adobe Photoshop Lightroom 5.0 (Macintosh), datetime=2013:08:20 21:08:52], baseline, precision 8, 353x215, components 3\012- data
Size
53 kB (52703 bytes)
Hash
3805f7856328bb72513017d1c4b9b767
2b1c41cfd9a0cffcca6d3269df7378659b89adde
d8fd31044a33cd84b7a46e4d6b343c4fdd89906102311a56a3e7a8406bea0f6f

HTTP Headers

GET /images/arzt3.jpg HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 52703
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 30 Sep 2014 15:39:54 GMT
etag: "cddf-5044a31dc0cb8"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/images/labor_neu.jpg

217.160.0.217

200 OK

59 kB

URL HTTP/2
dentallabor-morgenstern.de/images/labor_neu.jpg
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 350x350, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=SONY DSC, manufacturer=SONY, model=DSLR-A450, orientation=upper-left, xresolution=184, yresolution=192, resolutionunit=2, software=GIMP 2.8.10, datetime=2014:07:29 17:03:42], progressive, precision 8, 263x160, components 3\012- data
Size
59 kB (58924 bytes)
Hash
54e8363c3e0d70ff14c879cafea5dea2
625c2959ea6fa645acf9fd2fbe28b6bd9bf880b6
3bbb2102367f939b410acb8d818ee7c9a68fc6f3bfb9af2e5d8afbca5759fefb

HTTP Headers

GET /images/labor_neu.jpg HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 58924
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 29 Jul 2014 15:04:41 GMT
etag: "e62c-4ff565bf583c4"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/images/patient.jpg

217.160.0.217

200 OK

44 kB

URL HTTP/2
dentallabor-morgenstern.de/images/patient.jpg
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, manufacturer=Canon, model=Canon EOS REBEL T3i, orientation=upper-left, xresolution=184, yresolution=192, resolutionunit=2, software=GIMP 2.6.12, datetime=2013:02:05 16:43:05], baseline, precision 8, 424x283, components 3\012- data
Size
44 kB (44082 bytes)
Hash
f999c9e89d6c00829206097174294ab3
f78a93b2502eebe931ca79ff63da2275c44ddd82
93e2bac22e70d11ba80d86e3ef3ebe3ee7deb207194569b489bbc8edf2597b2f

HTTP Headers

GET /images/patient.jpg HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 44082
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 30 Sep 2014 15:30:57 GMT
etag: "ac32-5044a11da5351"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/images/cmd_logo.jpg

217.160.0.217

200 OK

9.5 kB

URL HTTP/2
dentallabor-morgenstern.de/images/cmd_logo.jpg
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 153x91, components 3\012- data
Size
9.5 kB (9475 bytes)
Hash
5b0b24fe3723cf00da27816e7764cb4a
32944d7e70f5e602e22aec6d342bf6722adf3864
41843b74c1823636cef3de878614ca9718bb4479be4369a060e645469defa47d

HTTP Headers

GET /images/cmd_logo.jpg HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 9475
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 03 Jun 2014 15:08:46 GMT
etag: "2503-4faefe36f859a"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/images/wissen-bg.jpg

217.160.0.217

200 OK

14 kB

URL HTTP/2
dentallabor-morgenstern.de/images/wissen-bg.jpg
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Macintosh), datetime=2014:05:28 09:57:44], baseline, precision 8, 660x33, components 3\012- data
Size
14 kB (13580 bytes)
Hash
b3997a182d18bdb5ef88eb494010c837
c33c45a73a87fbd3c536c6e10f3e68d315ed146b
b96b24db023b5a4359d0269b7d8167f5e495cf77db37512b618b52e6ef96ee38

HTTP Headers

GET /images/wissen-bg.jpg HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 13580
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 03 Jun 2014 14:57:53 GMT
etag: "350c-4faefbc80af6e"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/system/css/system.css

217.160.0.217

200 OK

1.4 kB

URL HTTP/2
dentallabor-morgenstern.de/media/system/css/system.css
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
1.4 kB (1433 bytes)
Hash
1f3a391cec8841e0fae094a21794aedc
003870931de6174d0d6a97a3bfec67764ca1a0e8
4f26ecfc3fa7e6ee6de449aa3a121e113a05d64f2d0e7c379a9c2373451069ef

HTTP Headers

GET /media/system/css/system.css HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/templates/system/css/system.css
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 1433
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "599-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/favicon.ico

217.160.0.217

200 OK

12 kB

URL HTTP/2
dentallabor-morgenstern.de/favicon.ico
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
MS Windows icon resource - 3 icons, 48x48, 24 bits/pixel, 32x32, 24 bits/pixel\012- data
Size
12 kB (11502 bytes)
Hash
9d00ae615cb646bdb38061dd52fa527b
b00d5351949909820fb520b5d345b5a3536023c4
01abfbbf8a1a93d2ecb1a5b4dfb549c2fdd803732420f85131664161ae88d88b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 11502
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Mon, 09 Jun 2014 07:21:15 GMT
etag: "2cee-4fb620e7e7b28"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/media/jui/js/jquery.min.js?4aa50e94712eb760b33d1f23329277a8

217.160.0.217

200 OK

77 kB

URL HTTP/2
dentallabor-morgenstern.de/media/jui/js/jquery.min.js?4aa50e94712eb760b33d1f23329277a8
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x175, components 3\012- data
Size
77 kB (77442 bytes)
Hash
a7dff244f87efa284c815a6f48e597eb
05429a83c03fe8729bb8cca411669888d910382b
0992b5ccedf50a6e99f501016f5455251be4a277dd94eda840457a01db74c119

HTTP Headers

GET /media/jui/js/jquery.min.js?4aa50e94712eb760b33d1f23329277a8 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 97646
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Sun, 14 Aug 2022 13:21:56 GMT
etag: "17d6e-5e6336634a500"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/dentalv1/images/nav.png

217.160.0.217

200 OK

1.8 kB

URL HTTP/2
dentallabor-morgenstern.de/templates/dentalv1/images/nav.png
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
PNG image data, 960 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1794 bytes)
Hash
d5d4e1f00ea701ff945de36ece572e90
e5e0a623ad7cc58f92d53678024dc91c84c95002
b8e599fba086c26a391867b8a0de5c509d90aa9c56cb44524833ee9711d0bcbf

HTTP Headers

GET /templates/dentalv1/images/nav.png HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/templates/dentalv1/css/template.css?1507106655
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1794
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Mon, 26 May 2014 20:09:37 GMT
etag: "702-4fa532898c467"
accept-ranges: bytes
X-Firefox-Spdy: h2

dentallabor-morgenstern.de/templates/dentalv1/images/rollout.jpg?30

217.160.0.217

200 OK

4.6 kB

URL HTTP/2
dentallabor-morgenstern.de/templates/dentalv1/images/rollout.jpg?30
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Macintosh), datetime=2014:05:27 08:56:38], baseline, precision 8, 1x30, components 3\012- data
Size
4.6 kB (4623 bytes)
Hash
85931f015b2b91b0fef5e8683580dd7d
c9890c82e5323c69ad8dcb0480b85c9f58ba41a7
2d3476fe835203f234c379b885c7c6152eb51234bf6de82584aef66a693f8f80

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/dentalv1/images/rollout.jpg?30 HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dentallabor-morgenstern.de/templates/dentalv1/css/template.css?1507106655
Cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 4623
date: Tue, 04 Oct 2022 09:36:54 GMT
server: Apache
last-modified: Tue, 27 May 2014 19:52:13 GMT
etag: "120f-4fa67083b4c81"
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.160.51.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.51.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6IwBhUaFgYY5TOs3wa/CoA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W5poU95uTS4xlzAv2Vxwp5EyJy8=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15151
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:36:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15151
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:36:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15151
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:36:55 GMT
Connection: keep-alive

dentallabor-morgenstern.de/

217.160.0.217

200 OK

3.0 kB

URL HTTP/2
dentallabor-morgenstern.de/
IP
217.160.0.217:0
ASN
#8560 IONOS SE

File type
data
Size
3.0 kB (2973 bytes)
Hash
d6b6673f93f1963fee0b63a0d1ce3df9
fc66ac83b44c6870cdd357e48cfd51a166814f44
f30dbc80a9ef3c07f4bf035c95fe1b3ffe9f982357bd4f3a0075f7b54ece9b47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: dentallabor-morgenstern.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Tue, 04 Oct 2022 09:36:53 GMT
server: Apache
x-powered-by: PHP/5.6.40
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 633ee82aa98310ae221dd5afd9b7d045=f65b36805eec619adb419da51f3232af; path=/; secure; HttpOnly
last-modified: Tue, 04 Oct 2022 09:36:53 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15151
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:36:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5504 bytes)
Hash
6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 40056
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9855 bytes)
Hash
7b7345414898d451d930431b46d4bd00
a36475a0ec7d7b92593cadd4aa99ca38550f1cd1
79b541c69c78df0e4a4c26438431fd6b52754b589d80e929a4203063712a540c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9855
x-amzn-requestid: 15f15a2e-0028-40ac-be8f-8e20c37fd27e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuGX7oAMFgDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-5fe693f30c91e4c82c8accb1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ngoNHOX6fFTGa1Y_-yFOFUYYYqiLJCQOq3NISbmc3gX21YO0TLxx0w==
via: 1.1 b637bd7696854d7acbf96132dcf53200.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 23:37:00 GMT
etag: "a36475a0ec7d7b92593cadd4aa99ca38550f1cd1"
content-type: image/jpeg
age: 35995
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11101 bytes)
Hash
ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 41288
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 17642
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 42061
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 42009
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP