Overview

URL britinn.at/
IP199.34.228.69
ASNWEEBLY
Location United States
Report completed2022-07-03 19:48:38 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-03 2 britinn.at/ Malware
2022-07-03 2 www.britinn.at/ Malware
2022-07-03 2 www.britinn.at/files/theme/social-midgrey.png?1656592366 Malware
2022-07-03 2 www.britinn.at/files/theme/nav-bg.png?1656592366 Malware
2022-07-03 2 www.britinn.at/files/theme/field.png?1656592366 Malware
2022-07-03 2 www.britinn.at/files/theme/button.png?1656592366 Malware
2022-07-03 2 www.britinn.at/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[Customer (...) Malware
2022-07-03 2 www.britinn.at/uploads/3/7/7/7/37773369/published/pscience-day-june-2022_1. (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-03 05:07:31 UTC 54.230.111.99
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 142.250.74.10
[Mnemonic Passive DNS] cdn2.editmysite.com (6) 11564 2012-10-02 18:27:39 UTC 2022-07-03 11:34:24 UTC 151.101.85.46
[Mnemonic Passive DNS] ajax.googleapis.com (1) 12905 2017-01-30 05:00:30 UTC 2019-10-16 05:01:16 UTC 142.250.74.74
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-03 15:43:25 UTC 142.250.74.164
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-03 05:03:35 UTC 52.37.143.111
[Mnemonic Passive DNS] ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-07-03 11:34:25 UTC 52.41.81.16
[Mnemonic Passive DNS] www.britinn.at (12) 0 No data No data 199.34.228.69 Unknown ranking
[Mnemonic Passive DNS] www.google-analytics.com (3) 40 2017-01-30 05:00:06 UTC 2022-07-03 16:45:35 UTC 142.250.74.174
[Mnemonic Passive DNS] www.gstatic.com (1) 0 2015-06-20 09:50:55 UTC 2015-11-29 15:55:55 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-03 04:06:00 UTC 34.120.237.76
[Mnemonic Passive DNS] britinn.at (1) 0 No data No data 199.34.228.69 Unknown ranking
[Mnemonic Passive DNS] r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-07-03 04:49:06 UTC 23.36.77.32
[Mnemonic Passive DNS] ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-07-03 04:43:22 UTC 142.250.74.3
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-03 11:51:19 UTC 93.184.220.29
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-07-03 04:33:25 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.34.228.69

Date UQ / IDS / BL URL IP
2022-08-07 12:10:05 +0000
0 - 0 - 2 septemberhouse.net/ 199.34.228.69
2022-08-07 07:33:09 +0000
0 - 0 - 6 weaveandwoven.ca/ 199.34.228.69
2022-08-07 07:32:28 +0000
0 - 0 - 6 weaveandwoven.ca/ 199.34.228.69
2022-08-07 07:16:15 +0000
0 - 0 - 5 www.weaveandwoven.ca/ 199.34.228.69
2022-08-07 07:15:49 +0000
0 - 0 - 4 www.weaveandwoven.ca/ 199.34.228.69
2022-08-07 06:20:46 +0000
0 - 0 - 8 britinn.at/ 199.34.228.69
2022-08-04 18:47:21 +0000
0 - 0 - 8 britinn.at/ 199.34.228.69
2022-08-01 12:44:24 +0000
0 - 0 - 8 www.nsna.org/state-associationschool-chapter- (...) 199.34.228.69
2022-08-01 12:44:25 +0000
0 - 0 - 3 www.nsna.org/Portals/0/Skins/NSNA/pdf/State_A (...) 199.34.228.69
2022-07-19 19:55:25 +0000
0 - 0 - 7 britinn.at/ 199.34.228.69

Last 10 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-08-18 20:08:21 +0000
0 - 0 - 3 aol-mail-incworld.square.site/ 199.34.228.40
2022-08-18 20:02:58 +0000
0 - 0 - 11 my-businessss123445.square.site/ 199.34.228.39
2022-08-18 20:02:44 +0000
0 - 0 - 3 att-106501.square.site/ 199.34.228.39
2022-08-18 19:06:01 +0000
0 - 0 - 2 https://btinternet-104129.weeblysite.com/ 199.34.228.96
2022-08-18 18:58:19 +0000
0 - 0 - 2 https://bt-108392.weeblysite.com/ 199.34.228.96
2022-08-18 18:57:41 +0000
0 - 0 - 2 https://bttqghhxsgw.weeblysite.com/ 199.34.228.96
2022-08-18 18:55:04 +0000
0 - 0 - 3 https://dfghfdrtygfdbdsdfghbvcxdfghgfdsdfgt.w (...) 199.34.228.96
2022-08-18 18:37:24 +0000
0 - 0 - 5 att-yahoo101.square.site/ 199.34.228.40
2022-08-18 18:37:03 +0000
0 - 0 - 2 https://yahoo-mail-108320.square.site/ 199.34.228.40
2022-08-18 07:55:23 +0000
0 - 0 - 2 https://advcxc.weebly.com/ 199.34.228.53

Last 5 reports on domain: britinn.at

Date UQ / IDS / BL URL IP
2022-08-07 06:20:46 +0000
0 - 0 - 8 britinn.at/ 199.34.228.69
2022-08-04 18:47:21 +0000
0 - 0 - 8 britinn.at/ 199.34.228.69
2022-07-19 19:55:25 +0000
0 - 0 - 7 britinn.at/ 199.34.228.69
2022-07-16 18:54:05 +0000
0 - 0 - 7 britinn.at/ 199.34.228.69
2022-07-16 00:59:29 +0000
0 - 0 - 8 britinn.at/ 199.34.228.69


JavaScript

Executed Scripts (23)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (55)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 03 Jul 2022 18:52:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TG5_quXI3R9R9iNbo7n3SlzvfMR54U2Y4ON8EGLlC-cxwsizWvsyUQ==
Age: 3349


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET / HTTP/1.1 
Host: britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.69
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 03 Jul 2022 19:48:24 GMT
Server: Apache
Location: http://www.britinn.at/
Content-Length: 230
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   230
Md5:    2672abcc61a209fdcb1bf5debd694f9a
Sha1:   8b556b97a8a21c267daa18d3a8b5b92e3da6a68d
Sha256: 004f8735b574470e599ab67d81105b3fa24c0518ec4514ab617e536258d2f963

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5745
Expires: Sun, 03 Jul 2022 21:24:10 GMT
Date: Sun, 03 Jul 2022 19:48:25 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WLRYoceceLnUtSP4UV65A3wyxvrecILkLIwvTiy4x2PKKCDuR06hXg==
age: 58904
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Sun, 03 Jul 2022 19:48:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 03 Jul 2022 19:48:25 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.britinn.at language=en; expires=Sun, 17-Jul-2022 19:48:25 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"1d1ea7be6a453b2049abbc63c46f2d73-gzip"
Content-Encoding: gzip
X-Host: grn100.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 8836
Keep-Alive: timeout=10, max=62
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2265), with CRLF, LF line terminators
Size:   8836
Md5:    4aedd2fd8ab894d0b04a83a308ab84f1
Sha1:   6301fe93013d603384aab8e8c9edbec0c23460cd
Sha256: 8195c5df9b5148f3871b8127dcaf406a0d8824060e3d2fd4b2be0723494856f5

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 03 Jul 2022 19:48:25 GMT
Date: Sun, 03 Jul 2022 19:48:25 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   471
Md5:    0c25875b36f3fb245e7c2fd59057d479
Sha1:   8135703d160ed58535e2bc51db78aefb9a8b3907
Sha256: a4b87ce4891dff7fbf8e40b1ed386c531b7488b23a9cd07d8b2ccd63c7d1d945
                                        
                                            GET /css/old/fancybox.css?1656538743 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Wed, 29 Jun 2022 20:37:18 GMT
ETag: "62bcb7fe-f47"
Expires: Wed, 13 Jul 2022 21:41:52 GMT
Cache-Control: max-age=1209600
X-Host: grn103.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1218
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:25 GMT
Age: 338794
Connection: keep-alive
X-Served-By: cache-sjc10029-SJC, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1656877706.951613,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /css/sites.css?buildTime=1656538743 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Wed, 29 Jun 2022 20:37:13 GMT
ETag: W/"62bcb7f9-347ac"
Expires: Wed, 13 Jul 2022 21:41:49 GMT
Cache-Control: max-age=1209600
X-Host: blu95.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:25 GMT
Age: 338796
Connection: keep-alive
X-Served-By: cache-sjc10049-SJC, cache-bma1674-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1656877706.950651,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /js/lang/de/stl.js?buildTime=1656538743& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 29 Jun 2022 20:36:50 GMT
ETag: "62bcb7e2-2e2ed"
Expires: Wed, 13 Jul 2022 21:41:52 GMT
Cache-Control: max-age=1209600
X-Host: grn86.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 36546
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:25 GMT
Age: 338793
Connection: keep-alive
X-Served-By: cache-sjc10078-SJC, cache-bma1656-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1656877706.951750,VS0,VE2
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64820)
Size:   36546
Md5:    0b1f4c68d66a3a4af78536cab244e591
Sha1:   a9328f3690ba3d437d7ae266983e8b73f0703414
Sha256: cfd864f4ade5b43aa2f7ab14058d708c059c1e3501d4836afbd4b3253bb17171
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/site/main.js?buildTime=1656538743 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 29 Jun 2022 20:37:37 GMT
ETag: "62bcb811-74804"
Expires: Wed, 13 Jul 2022 21:41:49 GMT
Cache-Control: max-age=1209600
X-Host: grn91.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 146400
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:25 GMT
Age: 338796
Connection: keep-alive
X-Served-By: cache-sjc10026-SJC, cache-bma1647-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1656877706.950986,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32147)
Size:   146400
Md5:    81b8673c5d3aa3ab8c0574f2a8f0e3b4
Sha1:   2e0661bc7907d9e2703b3347c3fec579f0aef5d6
Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.britinn.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.74
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Jul 2022 03:45:32 GMT
expires: Mon, 03 Jul 2023 03:45:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 57773
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1656538743 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 29 Jun 2022 20:37:37 GMT
ETag: "62bcb811-8250f"
Expires: Wed, 13 Jul 2022 21:41:49 GMT
Cache-Control: max-age=1209600
X-Host: blu85.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 158975
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:25 GMT
Age: 338796
Connection: keep-alive
X-Served-By: cache-sjc10069-SJC, cache-bma1662-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1656877706.950681,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158975
Md5:    c29a5e4fd4ee0d3b7cd0597f2b9b602b
Sha1:   bb134ed641467954f4a724167dc7ea56a03e7fa8
Sha256: bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2
                                        
                                            GET /files/main_style.css?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (342)
Size:   2517
Md5:    ccc0682f70351cd461f698d7b6f5e43e
Sha1:   fc67667faf3a464642e216e5a9f9e66ba61aac6a
Sha256: 27537e5ff58fb6872359ee54311b5dbdb1061271a9793bceea2fc9615e4bc959
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 03 Jul 2022 18:52:20 GMT
Cache-Control: max-age=3600
Expires: Sun, 03 Jul 2022 19:03:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -4uClpS6AYMOxiHkN3N-XTV1Ra34m7ne9WO-DVjT8TBPp4hSO-__hw==
Age: 3366


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2809
Cache-Control: max-age=133501
Date: Sun, 03 Jul 2022 19:48:26 GMT
Etag: "62c14e0e-1d7"
Expires: Tue, 05 Jul 2022 08:53:27 GMT
Last-Modified: Sun, 03 Jul 2022 08:06:38 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 22 Jun 2022 00:08:55 GMT
ETag: "62b25d97-124fe"
Expires: Thu, 07 Jul 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: blu100.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Sun, 03 Jul 2022 19:48:26 GMT
Age: 904185
Connection: keep-alive
X-Served-By: cache-sjc10076-SJC, cache-bma1662-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 11450
X-Timer: S1656877706.330956,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 28 Jun 2022 18:14:59 GMT
Expires: Wed, 28 Jun 2023 18:14:59 GMT
Cache-Control: public, max-age=31536000
Age: 437607
Last-Modified: Tue, 26 Apr 2022 15:48:56 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23040
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 28 Jun 2022 17:24:25 GMT
Expires: Wed, 28 Jun 2023 17:24:25 GMT
Cache-Control: public, max-age=31536000
Age: 440641
Last-Modified: Tue, 26 Apr 2022 15:56:42 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            GET /uploads/3/7/7/7/37773369/published/uni-logo.jpg?1651733880 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 5582
Connection: keep-alive
Last-Modified: Thu, 05 May 2022 06:58:00 GMT
x-rgw-object-type: Normal
ETag: "784d19e803415686447423e61a87bcbc"
x-amz-request-id: tx00000000000002293eeec-0062b85fdf-b9fbc7f-sfo1
X-Storage-Bucket: z0aa2
X-Storage-Object: 0aa2a3d07a27161a3f794749e1970f301e8a6702af9786445b87af3b51c4acab
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 241x95, components 3\012- data
Size:   5582
Md5:    784d19e803415686447423e61a87bcbc
Sha1:   337109ebe9ef0672511d399260b74b77de7429b7
Sha256: 0aa2a3d07a27161a3f794749e1970f301e8a6702af9786445b87af3b51c4acab
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?_=1656877707104 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.britinn.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
expires: Sun, 03 Jul 2022 19:48:26 GMT
date: Sun, 03 Jul 2022 19:48:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 552
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   552
Md5:    00ff0428801937984aafe2651afd9233
Sha1:   2aaa4a675188b3597e42f22836fbcf90f0453675
Sha256: 20fb3d5aa68e643049e8473446df82c45f5793a29f27db526daed8719e0d425e
                                        
                                            GET /files/theme/social-midgrey.png?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/files/main_style.css?1656592366
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 5563
Connection: keep-alive
Last-Modified: Fri, 03 Apr 2020 15:22:55 GMT
ETag: "d84dad177ab19b76cf5b678a7e0901c9"
x-amz-request-id: tx000000000000001bf10e3-005ea44c1f-10e20e2-las
X-Storage-Bucket: z9ec9
X-Storage-Object: 9ec9037a30e899c5753f10f513f84335665bf272404e656b1564f44ab718342d
X-Host: blu19.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   5563
Md5:    d84dad177ab19b76cf5b678a7e0901c9
Sha1:   985e525e199194d90f0d5eda6b3d182b3f2ca016
Sha256: 9ec9037a30e899c5753f10f513f84335665bf272404e656b1564f44ab718342d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gCQQBcpuPuq5HIONzVEfcw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.37.143.111
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8a+p59fSpnuv3GXTS1Kh73KgZlQ=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/nav-bg.png?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/files/main_style.css?1656592366
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 191
Connection: keep-alive
Last-Modified: Tue, 09 Jun 2020 02:18:27 GMT
x-rgw-object-type: Normal
ETag: "f4cba4637f3222fbc7ba17d148343edc"
x-amz-request-id: tx000000000000057a6bd82-006238b4f2-a9f4046-sfo1
X-Storage-Bucket: z4c1b
X-Storage-Object: 4c1b6cfd7365c3d84ad8f33c67a767e34247a4627991cd1dd6c8aa1130d4c2bb
X-Host: blu70.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 5 x 41, 8-bit/color RGB, non-interlaced\012- data
Size:   191
Md5:    f4cba4637f3222fbc7ba17d148343edc
Sha1:   e8b4735747f654a05b079f74c3c62e72c82742d8
Sha256: 4c1b6cfd7365c3d84ad8f33c67a767e34247a4627991cd1dd6c8aa1130d4c2bb

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/3/7/7/7/37773369/published/banner-britinn.png?1500554436 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 30978
Connection: keep-alive
Last-Modified: Sun, 01 Dec 2019 22:06:08 GMT
x-rgw-object-type: Normal
ETag: "044e73a1af51b10d7bf2848eabca8e7a"
x-amz-request-id: tx00000000000001312e11c-00629f0a49-b9fbc63-sfo1
X-Storage-Bucket: z91e0
X-Storage-Object: 91e0ecb12d427d00bd467fdb66850a984813584b022a1b7f3d439202ae3930ae
X-Host: blu43.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1020 x 131, 8-bit/color RGBA, non-interlaced\012- data
Size:   30978
Md5:    044e73a1af51b10d7bf2848eabca8e7a
Sha1:   50e5d98415ae1553ce467acc1c712ce9d5d233c0
Sha256: 91e0ecb12d427d00bd467fdb66850a984813584b022a1b7f3d439202ae3930ae
                                        
                                            GET /files/theme/field.png?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/files/main_style.css?1656592366
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 149
Connection: keep-alive
Last-Modified: Thu, 16 Apr 2020 00:23:32 GMT
x-rgw-object-type: Normal
ETag: "75ca98a284650ab482c9256e5609e371"
x-amz-request-id: tx000000000000000ddc540-0061a70da8-a9f3e81-sfo1
X-Storage-Bucket: z1f98
X-Storage-Object: 1f98bbb606dcf5955bccbeea4efc4ca681d573c1945a8d580f984b0c3c678808
X-Host: blu40.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 5 x 20, 8-bit/color RGB, non-interlaced\012- data
Size:   149
Md5:    75ca98a284650ab482c9256e5609e371
Sha1:   6325c898af731351d7aaf12124a720ac34349514
Sha256: 1f98bbb606dcf5955bccbeea4efc4ca681d573c1945a8d580f984b0c3c678808

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/button.png?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/files/main_style.css?1656592366
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 2681
Connection: keep-alive
Last-Modified: Fri, 03 Apr 2020 15:22:53 GMT
ETag: "0688ef3cf6be95f68cf3ecd514f49911"
x-amz-request-id: tx00000000000000144d90c-00612816c5-a51a2d8-sfo1
X-Storage-Bucket: z7efd
X-Storage-Object: 7efdc5ad971fe0a8d4939bd9b441fc9658ed2b0007ad2c68ecce330f877c9d00
X-Host: grn40.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 400 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size:   2681
Md5:    0688ef3cf6be95f68cf3ecd514f49911
Sha1:   78246964b419e8f71ff7cbb76ad0c8a04bed87b5
Sha256: 7efdc5ad971fe0a8d4939bd9b441fc9658ed2b0007ad2c68ecce330f877c9d00

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/button_highlight.png?1656592366 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/files/main_style.css?1656592366
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 2926
Connection: keep-alive
Last-Modified: Fri, 03 Apr 2020 15:22:53 GMT
x-rgw-object-type: Normal
ETag: "4def4773f972f5c86b9cbd26cfe5216c"
x-amz-request-id: tx00000000000000a214692-00628fdb21-b9fbc7f-sfo1
X-Storage-Bucket: z52cb
X-Storage-Object: 52cbf0026dbde80e513bf2ec1ec170cf033bd679bf77e34482368f11fed56251
X-Host: grn40.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 400 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size:   2926
Md5:    4def4773f972f5c86b9cbd26cfe5216c
Sha1:   3a9744d946db1226b59cc311d6710dfa38ea0d2b
Sha256: 52cbf0026dbde80e513bf2ec1ec170cf033bd679bf77e34482368f11fed56251
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.britinn.at/
Origin: http://www.britinn.at
Connection: keep-alive

                                         
                                         52.41.81.16
HTTP/1.1 200 OK
                                        
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.britinn.at
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1768
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         52.41.81.16
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=7fad5808-2c4a-4d8f-9488-25e85e974133; Expires=Mon, 03 Jul 2023 19:48:26 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.britinn.at
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Sun, 03 Jul 2022 18:55:24 GMT
Expires: Sun, 03 Jul 2022 20:55:24 GMT
Cache-Control: public, max-age=7200
Age: 3183
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.britinn.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 03 Jul 2022 18:41:12 GMT
expires: Sun, 03 Jul 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 4035
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /recaptcha/releases/4rwLQsl5N_ccppoTAwwwMrEN/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://www.britinn.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 146545
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Jul 2022 18:51:46 GMT
expires: Sat, 01 Jul 2023 18:51:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Jun 2022 04:02:51 GMT
content-type: text/javascript
age: 176201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (618)
Size:   146545
Md5:    edbca8e066da9cd6310dada3c125ccf4
Sha1:   22f45ed309e828212484a03cc7d0e629834e8a76
Sha256: fcab033160e1ba423ad7a42e0bd67ec5820e1ed6751765de935960e502e623f0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 03 Jul 2022 19:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?v=1&_v=j96&a=1413045204&t=pageview&_s=1&dl=http%3A%2F%2Fwww.britinn.at%2F&ul=en-us&de=UTF-8&dt=BritInn%20University%20of%20Innsbruck%20-%20HOME&sd=24-bit&sr=1280x1024&vp=1268x1012&je=0&_u=IEBAAEABAAAAAC~&jid=1513058618&gjid=1920268806&cid=96545222.1656877708&tid=UA-98712547-1&_gid=943815951.1656877708&_r=1&_slc=1&z=1363271177 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://www.britinn.at/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
access-control-allow-origin: http://www.britinn.at
date: Sun, 03 Jul 2022 19:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    38684612f0c6bb6dfa16da92f4a6878f
Sha1:   6fe62d0dd7db314b7f9bb945672f078e01d27f0f
Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en; _snow_ses.8080=*; _snow_id.8080=49d87541-f22e-4a8f-9596-8e0162082851.1656877707.1.1656877707.1656877707.a5eaef77-b0ab-419f-9610-e74a228960b9

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:27 GMT
Content-Length: 6518
Connection: keep-alive
Last-Modified: Sun, 22 Mar 2020 10:42:15 GMT
ETag: "9c3d4ce8fedb71a64e6d939519d1c5cf"
x-amz-request-id: tx00000000000006a01736d-005f66e1fc-1317a98-las
X-Storage-Bucket: z26e1
X-Storage-Object: 26e147dd56c82174d2c8f69fb85b9c8539168cae5966339defb2943de1a2b87a
X-Host: blu19.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Size:   6518
Md5:    9c3d4ce8fedb71a64e6d939519d1c5cf
Sha1:   46ac07d5cddf3158fdc1ba4ae51868c6e3523d42
Sha256: 26e147dd56c82174d2c8f69fb85b9c8539168cae5966339defb2943de1a2b87a
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.britinn.at
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en; _snow_ses.8080=*; _snow_id.8080=49d87541-f22e-4a8f-9596-8e0162082851.1656877707.1.1656877707.1656877707.a5eaef77-b0ab-419f-9610-e74a228960b9

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Sun, 03 Jul 2022 19:48:27 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn97.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 375
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (375), with no line terminators
Size:   375
Md5:    ee5bd2747c30496476cc0895392da3ae
Sha1:   5d0090c69cb42c47b1430094589d72c83b48dcd3
Sha256: 8bc12ea7d68fffddf5dc2f7ac10a44c78087b1e7f7fe046fcfb7d3c77198d3f4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/3/7/7/7/37773369/published/pscience-day-june-2022_1.jfif?1655903833 HTTP/1.1 
Host: www.britinn.at
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.britinn.at/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.69
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 03 Jul 2022 19:48:26 GMT
Content-Length: 213560
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2022 13:17:13 GMT
x-rgw-object-type: Normal
ETag: "f98f96d3d3ec80b72f78a5efd9e9656e"
x-amz-request-id: tx00000000000002041c9b4-0062b446d5-b9fbc77-sfo1
X-Storage-Bucket: zd985
X-Storage-Object: d985a68475d20010ec46698c3502bf75e34fa56a4382511e94e3b1d5f50fe516
X-Host: blu70.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 531 x 247, 8-bit/color RGBA, non-interlaced\012- data
Size:   213560
Md5:    f98f96d3d3ec80b72f78a5efd9e9656e
Sha1:   48397993a6a3624ec1bf47f1e468136981eb8498
Sha256: d985a68475d20010ec46698c3502bf75e34fa56a4382511e94e3b1d5f50fe516

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11576
Expires: Sun, 03 Jul 2022 23:01:23 GMT
Date: Sun, 03 Jul 2022 19:48:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11576
Expires: Sun, 03 Jul 2022 23:01:23 GMT
Date: Sun, 03 Jul 2022 19:48:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11576
Expires: Sun, 03 Jul 2022 23:01:23 GMT
Date: Sun, 03 Jul 2022 19:48:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638"
Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11576
Expires: Sun, 03 Jul 2022 23:01:23 GMT
Date: Sun, 03 Jul 2022 19:48:27 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8553
x-amzn-requestid: af8b913f-5eac-4e16-9afa-42b22b9fd6ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UaDuIEpAIAMFv8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba4cc0-29637a607cd815ef0080c235;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 00:35:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cJeOg5uZyKlrsa7XqpngVUr13fqslxDpFmXr-4pTfqqB46xREdv68Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 01:39:25 GMT
age: 65342
etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8553
Md5:    e6f97e6b64100081e8bed56216564854
Sha1:   303f4efaa9b98e39a935fc6514d3731d40d2977c
Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd82a5d63-f405-4f54-ad9a-a423aeae09c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7184
x-amzn-requestid: 5bea16e3-4d08-4511-afc7-be12e1bdf693
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uk06uGnEIAMFlhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be9b77-5aedba11418da4ae48e2b501;Sampled=0
x-amzn-remapped-date: Fri, 01 Jul 2022 07:00:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hA0TBCiyjTV0oJ95__nF6-t_K0j37WbuzW1-2z_gZ5qqn62WiajC0g==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 17:55:20 GMT
age: 6787
etag: "984498975a9424217a161f11ea66660a441ef6d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7184
Md5:    dbf74d25f8acb3f6b249386ce5e55871
Sha1:   984498975a9424217a161f11ea66660a441ef6d4
Sha256: bf666960a2f1d4d8c96a0b3c21bdee73a345a24916d96197d4566f925ecefedd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ea1212f-c856-478b-8478-e81dd7306820.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10143
x-amzn-requestid: 7b198982-763e-427b-9abb-2d533f346821
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UaZt7HBnIAMFtOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ba6ff2-30284cbe4fa5a0906070335e;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 03:05:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lTKF2-OdgSohMRk07yAFIDTy8eaebXdLG3Yjwp1h6tEuWANw9ZmYHg==
via: 1.1 f94de31c777bc3bf7b8976bac21b4482.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 13:49:14 GMT
age: 21553
etag: "e64381fdfedbede9788ae6b82affd78ceaf56284"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10143
Md5:    eebebd88b9e7ba3d94e19e6a20be4fd5
Sha1:   e64381fdfedbede9788ae6b82affd78ceaf56284
Sha256: 9a7950214124312b6f80394ea72d0f29773d11f223173c1343c9669e3723247b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0972b268-f4d1-450c-a4fb-9c028283bc9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10919
x-amzn-requestid: 23b6304d-6914-4b7c-9546-51a0cc618047
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Udsy_HypoAMFjpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbc1ac-3609a3fa574884a612eb1430;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 03:06:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NYiOOnweelCp0-DKbA2Z_bItDA3jpetk97Engp4BpzxahJsDdkP3HA==
via: 1.1 11c8673f8a48dc627eaa83c99e9efedc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 23:18:23 GMT
age: 73804
etag: "ca5bbf12904de3b5b04917d7acec94313b09fb87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10919
Md5:    b7bb856907b42548036082ab66b18020
Sha1:   ca5bbf12904de3b5b04917d7acec94313b09fb87
Sha256: 00f04c1600388f435b3100709ebbd3c36e2f4d50d65fa6126d477f769cfb3f10
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27c91804-20e6-462f-aedb-bdf209d6a7ff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7435
x-amzn-requestid: b40cee49-550f-4039-97ef-1b46de576522
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UqJBtE5voAMFWCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c0bba4-63212eaf06fb7d291ff9e6da;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 21:41:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2471PJrEUC3dKtVzv8vDMiY53Zt7tLMbYHGk6cNyWmN9eL42S7VYQA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 02 Jul 2022 22:03:00 GMT
age: 78327
etag: "9b4f9ba34e26b13aef71dd9125dd3878dc2f9105"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7435
Md5:    bff84dbfeb7d2cb2edcb367e84ed0f7e
Sha1:   9b4f9ba34e26b13aef71dd9125dd3878dc2f9105
Sha256: 0a760e8b512c0b81c732721e1e0fae54b14b8387aa0d214ce7f325ba128d7a05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8609313-2166-40d9-90ec-6341379c3fee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7338
x-amzn-requestid: 69972365-37bc-40c3-83f3-0a42f11b02e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UUXKlHg4IAMFqjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b80576-186533221f7a071979ab0e84;Sampled=0
x-amzn-remapped-date: Sun, 26 Jun 2022 07:06:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lh8VUqIIAG2j2q1Ob_yjVpGNluTSQ4_jNfRrY_s6OjMD3m4srngH1g==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 08:13:04 GMT
age: 41723
etag: "c0a0f3da9a66c00197d4135196b6685ff977ba3c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7338
Md5:    432a79bdc37c3a8426f75c44b7ee239b
Sha1:   c0a0f3da9a66c00197d4135196b6685ff977ba3c
Sha256: 4c7ebcf38e0bf5c4c4bbd97a5f02ea76e21e1812595980100b39158e5af96bdf