Report - der-pc-fritze.de/

Report Overview

Submitted URL
der-pc-fritze.de/
IP
144.76.240.18
ASN
#24940 Hetzner Online GmbH
Submitted
2022-12-03 04:22:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
62

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
getpocket.cdn.mozilla.net	1369	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	42 kB	34.120.5.221
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
www.der-pc-fritze.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	18 MB	144.76.240.18
www.cbs-it-service.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.1 kB	1.1 MB	176.9.22.205
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	201 kB	216.58.207.227
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	70 kB	142.250.74.99
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	60 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	95.101.11.115
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	7.7 kB	216.58.211.3
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	553 B	1.7 kB	216.58.211.4
der-pc-fritze.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	794 B	617 B	144.76.240.18
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.149.164
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	52 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	der-pc-fritze.de/	Phishing
2022-12-03	medium	der-pc-fritze.de/	Phishing
2022-12-03	medium	www.der-pc-fritze.de/	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/logo-showcase-wordpress.css?ver=5.9.5	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/uploads/Images/back.svg	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.2.4	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/font-awesome.min.css?ver=4.7.0	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/uploads/2019/10/favicon-1.ico	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-9.css?ver=1647028849	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/uploads/elementor/css/global.css?ver=1647028806	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-1917.css?ver=1647028806	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/themes/onepress/style.css?ver=5.9.5	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/lightgallery.css?ver=5.9.5	Phishing
2022-12-03	medium	www.der-pc-fritze.de/wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6	37 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-24 13:04:55 Times Seen425 Hash 3211cccde3f239748f7a87edd935f50a d29c7a637fd1fead2e30d3fabeee4b0fdfa64971 22f977105367afc342362f5ba6d9361109629a73b66673b2b93c051a43aa7439 Loading...

	www.der-pc-fritze.de/	319 B	2023-03-07	2024-02-25
Pretty URL www.der-pc-fritze.de/ IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-02-25 04:12:25 Times Seen60 Hash 0e516d2b27a5fc683845b2fb3dfb629c e7240bc0af16f0c27f827579f18f8976e228f43d d95f63c9d7ce609c203ec30ed8d8fd8a745831bc47e0d97c03140eb4df108c8c Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d51.615322721937616&2d11.578177952706083&2m2&1d53.12340472418085&2d14.01056827890484&2u10&4sen-US&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._fpfei1&client=google-maps-embed&token=130634	43 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d51.615322721937616&2d11.578177952706083&2m2&1d53.12340472418085&2d14.01056827890484&2u10&4sen-US&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._fpfei1&client=google-maps-embed&token=130634 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-08 15:07:54 Times Seen1 Hash c6851d800e775c38ecf81cf88f3a2ff5 b267da95cac9d5c3dd1c8db3b40796f0c2bd5aef e64bd30b32afd553c04cb28300ede1e4b13e5c8c2a6f2de11502ae917384e69f Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/controls.js	89 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:49 Times Seen1 Hash b333f5f5e4f77d32cecc7a32179525a2 7374fa51dbcc3985ca957977ad85d8d494780fd3 861a0e07acb61b96bfc42f7c04421fdbd7f649eee84867458875765bf1e46f65 Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1	26 kB	2023-03-07	2024-03-15
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:21 Last Seen2024-03-15 13:17:22 Times Seen317 Hash 8c2ace62ad60fedb5283f0afb8a413ab ba9f3a726843c345b6873f928d94aa1062aa28c2 f78561b456183d87dfe56de90c32b36631622a96397cfeb8284064ceeea28c6d Loading...

	www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.2.4	47 kB	2023-03-07	2024-02-25
Pretty URL www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.2.4 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-02-25 04:12:27 Times Seen207 Hash 583cfe88e1fa0e182d10399f45d21283 b77c781d04390299898878dcadced624ff50a90b 9f5aacd2c120fd4d3e730e2290001de3abf9cdec6309f36844807b74183f266b Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/overlay.js	3.6 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:48 Times Seen1 Hash bc2cc5e765ab99e8b3251f0329b99e73 d42053c14583f43ff15d334cd63b804425e9fb73 60f1bc781243244c74a3d288d9da7de2e2fc8727da4206d562b5120319cd9f09 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=6056	62 B	2023-03-08	2023-08-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=6056 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:25:00 Last Seen2023-08-17 14:45:14 Times Seen1761 Hash ac206f9aca43cbd08f77ebff219bad68 a8f70e30f06a72933f89c350b8fcc8e77280ff5d 5da1360295132675024820ab37f9bc1c658f6b900180906ec44125f8127f762e Loading...

	www.der-pc-fritze.de/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5	18 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 04:54:54 Times Seen12590 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.der-pc-fritze.de/wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4	53 kB	2023-03-07	2024-04-11
Pretty URL www.der-pc-fritze.de/wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:55 Last Seen2024-04-11 09:32:02 Times Seen1691 Hash a5f96c62d75be144282ef6cc429a6259 99a600283194105be6679b4a7cba8ac27a8c455a 9221608a4df26c3a67d553a85ea42269235ca69d2ff47419148853830d5cea2d Loading...

	www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sAm+Klostersteig+16,+14797+Kloster+Lehnin!5e0!6i10	2.0 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sAm+Klostersteig+16,+14797+Kloster+Lehnin!5e0!6i10 IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-08 15:02:05 Times Seen1 Hash 30fa5b23a8e2ce82bcd10e62ce4d9228 fe27b3373e91041ba8bf1d18faef3550b8d40e1b d35e2d144dfa2c7444983fdfc99eab1729a571a1cd9529774cf1777786df34d2 Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 04:54:53 Times Seen31823 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1	6.7 kB	2023-03-07	2024-01-30
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:21 Last Seen2024-01-30 15:41:53 Times Seen61 Hash 4c805daf480925b48b9571cbc4e0a237 be05d8e2a9516f3a87e060ac162e2e9bd9110048 03a24f45bdfd6d4bd03533dfcc300a7a647b5aceea8759a9b1119d591ccab5d2 Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 06:13:12 Times Seen5360 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6	43 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:01 Last Seen2024-04-24 13:04:55 Times Seen246 Hash e6f430cbc7a8dc5d83f0c8eb1472a81f 58398b8ca7ddf501071adc888d2d72d1ef4dad71 1cd03e5224865b618d82386028b8e2434a318437af49ab0b29146e2b0005c0f2 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 07:39:09 Times Seen37056289 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/map.js	73 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:48 Times Seen1 Hash 4869740252e68a1c77e9c89f5c34c65c 86f362a4b77470a409d4ce446688905ab2297f90 2ad1214ac7de8037dc1cc5ea2e9ec32b9e656ecffef354809dd937e711ffdee9 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/search_impl.js	2.8 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:49 Times Seen1 Hash c55b663f7981dc2de0cae883cb243f89 edfac5488a0b326b9d39a51194ca37c5b8901dde 0d1898fc1cd324c5efeaac399db716f497d41fe509cb88457f6b1398fdd43815 Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-24 09:47:16 Times Seen2350 Hash e77ef4006bb97c97c8407f4a8abf4e3d 1a27436ff6ef47ca5c3e352b792e50901ebb705e 9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d Loading...

	www.der-pc-fritze.de/	373 B	2023-03-08	2023-03-08
Pretty URL www.der-pc-fritze.de/ IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-08 15:02:05 Times Seen1 Hash fd4eab3c7dccbe8717404eac2de03edf 4a0b8ebae2471ce065b6535d88c3ac065eb8eb31 bc4e1e85726efd49a44011d2d1a073be2d0f8e22fec368edc0324469a114011a Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	3.4 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:24 Last Seen2024-04-24 05:14:00 Times Seen587 Hash f0a6215645c0c08e11eb34b62d75fc17 4cada97302f25735f6bd8c23cb43ca50d154ba56 37a579a050da890dfcb8e3e018834926e61e759f35923bc961bc995514a4b000 Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6	2.6 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-25 06:13:08 Times Seen4624 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4	25 kB	2023-03-07	2024-04-02
Pretty URL www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:01 Last Seen2024-04-02 10:03:38 Times Seen38 Hash e2f04ed6a629491d52d334f564cdeb9f 698dd61d7266747dac494a49ceb7a525164b57b6 ef0c19241036cb636684d2ff29f13ea9eda4571edbc2ad6e1902f0f2c0d61864 Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen23153 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6	4.9 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:30 Last Seen2024-04-24 13:04:52 Times Seen355 Hash 32a55dbccdbc04945afbeb33247e0ee4 30f853d4d5eaa52c0dd5fd2c4add9bd7d4d20adb 75479495809d50623a1761b699f6b83b18e42b656e7adc111b69fadfd893ea40 Loading...

	www.der-pc-fritze.de/	1.9 kB	2023-03-07	2023-03-17
Pretty URL www.der-pc-fritze.de/ IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:01 Last Seen2023-03-17 10:18:17 Times Seen1 Hash b4efed158c0f177b2f0cefd92e9d8821 5761e3e2514e406388cb6cbdbf2161b44e9f37b8 950c707a226c9820c49f5101e7498a2ca4ef78aeef2e878b7ddd1b6478471223 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad	174 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:53:07 Last Seen2023-03-08 15:02:05 Times Seen1 Hash c1266959ba2945870274b25dd17840c3 51020b0cfad91e6bd16a967130d5bcd198830f1c 40f08ed26b3ea81c7f6df09ed4f89fbfcf7cf8fc1a420c29a5657a50b844cde5 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/onion.js	27 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:48 Times Seen1 Hash a4e562923600d6d71cc5bf35a00eae47 fd698438370a35c4e24a423a7398854bdf1a6591 fa952709fa4f2d289ab967076ea503aac2b25598af23c3a4e962905b884ff173 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d51.557291280279244&2d11.525170948905153&2m2&1d53.13817756088128&2d14.074987530521337&2u6&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._t9hwh9&client=google-maps-embed&token=15838	9.4 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d51.557291280279244&2d11.525170948905153&2m2&1d53.13817756088128&2d14.074987530521337&2u6&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._t9hwh9&client=google-maps-embed&token=15838 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-12 06:10:42 Times Seen1 Hash b6b5f0dc2fb0c30a2989559aca2bed53 6e5186dfce2b63823121b9d976aa709eec54ae1b f4a5de4ec74bd753e33d6382cede6adea14946760a40ee3d67a5b71177823e67 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s7fhfyd&10e1&11b0&callback=_xdc_._t6t9a8&client=google-maps-embed&token=10385	62 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s7fhfyd&10e1&11b0&callback=_xdc_._t6t9a8&client=google-maps-embed&token=10385 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-08 15:02:05 Times Seen1 Hash 3945c48946e0332d6f16e3489060c7da c50391ebebe1e57a13075b76e8b3047721e87207 9eeb6beb76bc210ded88fde5f4b95ed9482dc83d5be349880cb20ef72ed39ab6 Loading...

	www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6	9.7 kB	2023-03-07	2024-04-24
Pretty URL www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-24 18:24:18 Times Seen4633 Hash cfb428c02811f0cbe515d5f3dca61de6 e95f8696fbe29a706e66ccf582b36d9bd650ab9f 679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78 Loading...

	www.der-pc-fritze.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-25 04:54:53 Times Seen2815 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/util.js	170 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:47 Last Seen2023-03-12 16:22:26 Times Seen1 Hash 57abc24730c5e3098df038528852b6bb bc15e0c81c4aaca2cbf840a357622a398d0299c6 ab0897fa86882119e4c205194b220af856781975b3485fd97df8ffda72835f0e Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s7fhe78&10e1&11b0&callback=_xdc_._uazkh6&client=google-maps-embed&token=49528	62 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s7fhe78&10e1&11b0&callback=_xdc_._uazkh6&client=google-maps-embed&token=49528 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-08 15:02:05 Times Seen1 Hash e78bc32d93e6ecfce3acceb3a685701c 3827b429435fa032ed172a213f44d3d976e7d347 e50b0812f4e1487e663965f348c0d52d199b85d77ed477582e4a8030771dbc74 Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 06:13:12 Times Seen68612 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/plugins.js?ver=2.2.4	97 kB	2023-03-07	2024-04-02
Pretty URL www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/plugins.js?ver=2.2.4 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:01 Last Seen2024-04-02 10:03:36 Times Seen52 Hash bce894e14194b3d52955e20686c2e8eb 686c446d4a53352da4ec84823d14c03449a7e9a4 e7408ed066d89e3949277997fdfe15f743cb93287eb2093e0f6d80f4008cf54c Loading...

	www.der-pc-fritze.de/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1	18 kB	2023-03-07	2024-04-11
Pretty URL www.der-pc-fritze.de/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:24 Last Seen2024-04-11 00:17:37 Times Seen167 Hash 2a169b60581eb7c5813648745d999061 0720b42cb5ef8504009ef51058953dd74c79131b 0978f0820fa783ce60b286bdceffb0033328c38f46437f63351da633c5ef1195 Loading...

	www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-25
Pretty URL www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 06:13:10 Times Seen52726 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js	227 kB	2023-03-08	2023-03-11
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:48 Times Seen1 Hash c5985140047ecb6e6534beaef177c3fa 84d5978a4ca3a85dccce475e32489be2c3b92a18 66ae347c164e3a79b551f69cac12052db66cb6fbeb765d0ffca294806f36427a Loading...

	www.der-pc-fritze.de/	2.2 kB	2023-03-08	2023-03-14
Pretty URL www.der-pc-fritze.de/ IP 144.76.240.18 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:05 Last Seen2023-03-14 06:23:12 Times Seen1 Hash d29e198795318e56d7bd4636180f277d 9fba57b201702d0b899ddbd6303d12b47d1a1cc6 5291c68e35bfb54a12062244a741ccffb39ceac0f0f712ad51e1c13ace1ca566 Loading...

HTTP Transactions (125)

URL IP Response Size

der-pc-fritze.de/

144.76.240.18

301 Moved Permanently

162 B

URL HTTP/1.1
der-pc-fritze.de/
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 04:21:57 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://der-pc-fritze.de/

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6049
Expires: Sat, 03 Dec 2022 06:02:46 GMT
Date: Sat, 03 Dec 2022 04:21:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2b0d826d8f7c987b72f8ede318bb71f5
21dd77cf975d65b9a145ebe6427fb4ecb81bbf04
6fe868b4f9dfb6560614339d635518b1985a4a6745897084ab20fc40ec5b85f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6FE868B4F9DFB6560614339D635518B1985A4A6745897084AB20FC40EC5B85F3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10481
Expires: Sat, 03 Dec 2022 07:16:38 GMT
Date: Sat, 03 Dec 2022 04:21:57 GMT
Connection: keep-alive

getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30

34.120.5.221

200 OK

41 kB

URL HTTP/2
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30
IP
34.120.5.221:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
41 kB (40845 bytes)
Hash
71a10002ca607d8805e405fdc861cbb2
5f7aed6b17effd43c0e31384cf8c64a43d8e184a
1ccefe6fe966d38f1de4ad9e82a25b40d02192e53a9dff87f4db2e8a2a84fb95

HTTP Headers

GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: yIknEDWbs2i-lB9Qrq7V0fAm-8jHxisL0Je1BaxSm_TPNa80MAjIIw==
content-encoding: gzip
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 04:14:35 GMT
content-type: application/json
content-length: 40845
age: 442
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4122
Expires: Sat, 03 Dec 2022 05:30:39 GMT
Date: Sat, 03 Dec 2022 04:21:57 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: YEhVgwVi86mLj/2Aj147VXKqLQmDAH0yqvkEKsxA/NBjR13Nx7TA2igZZSZiZz535bky/sasTtqpseEClI0mHQ==
x-amz-request-id: RHY7WWE3TB2E9AG7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 03:46:25 GMT
age: 2132
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1796
Cache-Control: max-age=110353
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:21:58 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:01:11 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 04:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 119
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:21:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
30f7383776d74a2e20a2f1f01bfdefae
674c1d9f9eb41c9aa268afa2d7e3b55d0c1004d3
50b5225e489d1a6b3b0df82d301d8443cdcde50cfd2d9512dcff1fe546f9e258

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50B5225E489D1A6B3B0DF82D301D8443CDCDE50CFD2D9512DCFF1FE546F9E258"
Last-Modified: Sat, 03 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 03 Dec 2022 10:21:58 GMT
Date: Sat, 03 Dec 2022 04:21:58 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 04:08:58 GMT
cache-control: public,max-age=3600
age: 780
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1791
Cache-Control: max-age=105287
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:21:58 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:36:45 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

der-pc-fritze.de/

144.76.240.18

301 Moved Permanently

0 B

URL HTTP/2
der-pc-fritze.de/
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 03 Dec 2022 04:21:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-redirect-by: WordPress
location: https://www.der-pc-fritze.de/
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.149.149.164

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.149.164:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rn6AUtgqc21Ihv99gN2IjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SMWi6NZn7oRj+ne5xyQhfB9Amug=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Sat, 03 Dec 2022 06:03:55 GMT
Date: Sat, 03 Dec 2022 04:22:00 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Sat, 03 Dec 2022 06:03:55 GMT
Date: Sat, 03 Dec 2022 04:22:00 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6115
Expires: Sat, 03 Dec 2022 06:03:55 GMT
Date: Sat, 03 Dec 2022 04:22:00 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11233 bytes)
Hash
dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 04a762c8-8d2a-405a-a2e2-386a4da3c57f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZxHZEJXoAMFzqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386fbc8-174cbfee1ea6b7093fc18c58;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 06:44:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3tSASLdggPnNrG2bqgvMF5fbE-EoamXkl6kX-kLSPkJwmIdQ6NMsJQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:20 GMT
age: 23320
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6416 bytes)
Hash
585e7e56aed6b2f2f5e658f46bb791c4
34b768eb68f6cb850ff984fd687096e089649523
5412ba902e667571b0bbb3879ba6b9ad39501abce59381e84e6aa09779e7198b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F741da48c-a860-42fc-8f5c-4572522c2f56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6416
x-amzn-requestid: f5456dd6-8459-4a19-a9b5-b7b567fceb01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cik2pG5aoAMFrVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a81c3-0923232b35133f471332062b;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 22:52:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8TZjwYhWWdmfZcne3lTU9GR4TqsEjoslXu5WxuF0arKiup8-kBjqbQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 23:08:35 GMT
age: 18805
etag: "34b768eb68f6cb850ff984fd687096e089649523"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (6966 bytes)
Hash
9b77186d0d93f7ccfe729edd9d184af3
458aa485b9abef3b72427d308a172d1c24eceabd
8bed5a8e56e8c43fcbdc807245c2b651d014a06368574e57a25b718399a4a701

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6966
x-amzn-requestid: 2b40c185-e050-4bfd-9b08-bb70e6f89824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfAb7Ev3oAMFnrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389144c-65301ace20da6f580ed77e82;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 20:53:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBRZ6xulfveO7b5ZY8ApNbQJ1Sz8LbzEAb3YqxOEaZGYem-ZRaar_Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:22:25 GMT
age: 82775
etag: "458aa485b9abef3b72427d308a172d1c24eceabd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7657 bytes)
Hash
3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ElvfdUly4Rb3YOQyMO2C_VelFUe6xcFbMh6x5fNrRzGjKCITdGSwLQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 24253
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73a2ea57-9c46-4205-a91a-a39e992ffe29.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6042 bytes)
Hash
a483cb4f5948987ff2fa6be8d8f3c4ab
3b36c020f5fc38693ac159e5747518a3234ba8cc
a1c33278142371a168ca50aff0c5dc887461a9c83251e397d45c957c7cf788e3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73a2ea57-9c46-4205-a91a-a39e992ffe29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6042
x-amzn-requestid: 51d7c6d8-e3ab-42ec-8771-22244bc65da0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZmkNGe0oAMFXNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386eae7-04a064426ee5d39b3c2afdfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 05:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9fzO8Wc_eneNxExk9EPddOAUZPfKsbobykdAyEkBIzw1_wxawY9lOg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 07:25:11 GMT
age: 75409
etag: "3b36c020f5fc38693ac159e5747518a3234ba8cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 82905
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.der-pc-fritze.de/

144.76.240.18

200 OK

18 kB

URL HTTP/2
www.der-pc-fritze.de/
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size
18 kB (18191 bytes)
Hash
707805bdd4774f7b4839224f3204b336
d620582ac55c6aa390e70aed5a5453019fe100e0
d3c0b67e3ba3a7a6f23829a94f4e781ef9807240be512988b652f2a0b344fe6e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/html; charset=UTF-8
content-length: 18191
link: <https://www.der-pc-fritze.de/wp-json/>; rel="https://api.w.org/", <https://www.der-pc-fritze.de/wp-json/wp/v2/pages/9>; rel="alternate"; type="application/json", <https://www.der-pc-fritze.de/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/logo-showcase-wordpress.css?ver=5.9.5

144.76.240.18

200 OK

90 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/logo-showcase-wordpress.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
90 B (90 bytes)
Hash
a3063af7a88e9482fc04b5322baa040b
1c9d7ebc43a80df7f77d8859a705fe379c9c5a8d
b134bd4467f69339c908dc5cc3698a5c892ec0d51341fc59058e34b36c06b3d4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/logo-showcase/css/logo-showcase-wordpress.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
content-length: 90
x-accel-version: 0.01
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: "51-5d9f6975ee451-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.der-pc-fritze.de/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5

144.76.240.18

200 OK

76 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (39791)
Size
76 kB (76185 bytes)
Hash
78e4ec18249712ea94ce91e100adec1f
9dec11bbbc3f8444667fbe773911d6ca9d72e02c
d7f4fac8062077bdb947a20041e9d8301279d2f0d2cccfe5a6721537097bc3d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Tue, 05 Apr 2022 20:19:13 GMT
etag: W/"624ca441-145db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.der-pc-fritze.de/wp-content/uploads/2019/10/marker.png

144.76.240.18

200 OK

6.2 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/2019/10/marker.png
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 80 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size
6.2 kB (6209 bytes)
Hash
f1fd8c682ebd871c1881c38195e924a5
d72e469662a2e5b2457a736d5e7ef00e8bf206af
8dcc6fa65bed2b2c67638b166fac07c244a3063059c0902df18bf07720ace55b

HTTP Headers

GET /wp-content/uploads/2019/10/marker.png HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/png
content-length: 6209
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-1841"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/2019/10/karte.png

144.76.240.18

200 OK

755 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/2019/10/karte.png
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1500 x 2009, 8-bit/color RGBA, non-interlaced\012- data
Size
755 kB (755350 bytes)
Hash
4526b1d8902941075c36021a0afc2e9a
1b70a3e24087732f0f95506eae22a4cbeae4219d
00c5fb9a9f673b98c99fa624e42366c500f11f906176b2d5920f06d273abd61c

HTTP Headers

GET /wp-content/uploads/2019/10/karte.png HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/png
content-length: 755350
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-b8696"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/2019/10/MarkerHp.png

144.76.240.18

200 OK

226 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/2019/10/MarkerHp.png
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1000 x 998, 8-bit/color RGBA, non-interlaced\012- data
Size
226 kB (226383 bytes)
Hash
20560c40850f48ebffc3a9fd483fec64
f0d4a3c93b894c1a9a0bc7c07bef1542eef15292
a75cb83a83f60ed96d26e1f425b6b83d1aaf92d9b6d48b4c20085055c65da546

HTTP Headers

GET /wp-content/uploads/2019/10/MarkerHp.png HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/png
content-length: 226383
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-3744f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/programingHD.jpg

144.76.240.18

200 OK

1.1 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/programingHD.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size
1.1 MB (1136723 bytes)
Hash
89e1c124bedf98741a91c68124fbbe84
a64b6151b84ee1234f0d440a49fe512509feb3b4
f268a1d72b769d6b3dda1e8f1ab7d2c59beee77c49a6e85c7ceadcb2e73976ae

HTTP Headers

GET /wp-content/uploads/Images/programingHD.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 1136723
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-115853"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/serverStorageHD.jpg

144.76.240.18

200 OK

2.2 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/serverStorageHD.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
2.2 MB (2247080 bytes)
Hash
03de9e9277b8e1f66cff4f82b8a9566a
64a62773ea5d086912e142614f94256bec0b3a02
01adefa3f62e8e8f789f0e6e038aa8ce69965777b265f31c8108d4f895d5f3ee

HTTP Headers

GET /wp-content/uploads/Images/serverStorageHD.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 2247080
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-2249a8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

144.76.240.18

200 OK

3.8 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (10544)
Size
3.8 kB (3765 bytes)
Hash
752b352af03c561d5d4dd29764831789
2d34c3796c00667aa66c388ff33b418f64b1e148
d301fabe7cd099395714cae8026e2d8aded4df472993d0de87b1be31e08e3917

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-29ba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/data1.jpg

144.76.240.18

200 OK

1.8 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/data1.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=FUJIFILM, model=X-T2], baseline, precision 8, 6000x4000, components 3\012- data
Size
1.8 MB (1804550 bytes)
Hash
fe493c3f21e7bc82a274f898eb497aaf
14b67cc3c1579ef7bdf4ffddb1643b4d738be6e5
258818a90c9942100253ae45c8ce8898e5268566289f940010d42523f9197d0e

HTTP Headers

GET /wp-content/uploads/Images/data1.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 1804550
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-1b8906"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ea840a9e9512d16351c02b753f42119b
f8c3ffd85d884deca67fca778b43f4abeda7caad
ca801d233c757d8c6780b3aaad38567d62ed42eec8ea572e0b09d69f5f2b2d2b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA801D233C757D8C6780B3AAAD38567D62ED42EEC8EA572E0B09D69F5F2B2D2B"
Last-Modified: Sat, 03 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Sat, 03 Dec 2022 10:21:17 GMT
Date: Sat, 03 Dec 2022 04:22:00 GMT
Connection: keep-alive

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6

144.76.240.18

200 OK

2.5 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (4866)
Size
2.5 kB (2525 bytes)
Hash
c3442eb1f32eccd249610a54e1069547
b0ccdc955fa455239abbf8185d39d5f909b122cc
c65ab0c12fbc9118ae1b88308fac45389cc12935ecb4cf1ec6f0aa357732d44d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-1329"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6

144.76.240.18

200 OK

4.9 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (14196)
Size
4.9 kB (4929 bytes)
Hash
902c72c22f994120db5bee77654bf6a2
d55e28941fc51e3e3942ad8f977b421c272ee827
944ed9ea0d42f1968c0dc2dfe410efca6e288867fa03cf50899b95ef7cce1a5f

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-379b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/hard-drive1.jpg

144.76.240.18

200 OK

814 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/hard-drive1.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, manufacturer=Canon, model=Canon EOS 400D DIGITAL], baseline, precision 8, 3888x2592, components 3\012- data
Size
814 kB (813724 bytes)
Hash
d09d314ffabda23c80bf07c084a35179
0c0259963a8232042a49729966265d70a0974888
7858ffa82921014b1a5edfdbfcb3d20e2f15fc0dee1a1ed5c1e30ba3c3f88ed8

HTTP Headers

GET /wp-content/uploads/Images/hard-drive1.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 813724
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-c6a9c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/hard-drive5.jpg

144.76.240.18

200 OK

829 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/hard-drive5.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, manufacturer=OLYMPUS IMAGING CORP., model=E-M1], baseline, precision 8, 2854x1903, components 3\012- data
Size
829 kB (828777 bytes)
Hash
5fcdd74bc440827fdcc798a71f4d0727
3afbe12a383204d9c4528ba4c16415f0c2ce3ad1
2f03ff301a73e9d5a79232df17724fec0598304efd8c6f6eecda000edf0501cb

HTTP Headers

GET /wp-content/uploads/Images/hard-drive5.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 828777
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-ca569"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

144.76.240.18

200 OK

3.4 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.4 kB (3352 bytes)
Hash
0572cae980786b31468e635e49e10615
4ebce7b19f0bd63de17e464c51755173eedc9304
2baad1fa0f96565e4428a81cae2e5181b3c9491fae006b084d40f1f3579624a5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-2fa6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/kontaktNew.jpg

144.76.240.18

200 OK

4.5 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/kontaktNew.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 4928x3264, components 3\012- data
Size
4.5 MB (4493564 bytes)
Hash
df44fef0078591ef862e2a9d63883b91
594eee489500f01e1e6887b9b3891b7622f402c7
9ba5425e7f5510a03036336b4102e37aaa7dc7bffd499b66eb49b5361160a1ca

HTTP Headers

GET /wp-content/uploads/Images/kontaktNew.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 4493564
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-4490fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/back.svg

144.76.240.18

200 OK

594 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/back.svg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Size
594 B (594 bytes)
Hash
8e255533e09edf6e0076c5ece041f27d
6adfcba7558d980b10a93729288992544ffd6a9a
c1a34d0934990d67568bc26d62d8f9bce44e4a6e6a176ea5803c2883d1ed98be

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/Images/back.svg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/svg+xml
content-length: 594
x-accel-version: 0.01
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "252-5d9f6976bd4c5"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6

144.76.240.18

200 OK

3.7 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text, with very long lines (9720), with no line terminators
Size
3.7 kB (3680 bytes)
Hash
3cad4ecdd4546c6b29e3e7c20cf43e60
5fd1c92ff8aef1c1521d984c0c37ece47649e582
4a58688f687b6ff50335d9528e024247e1b6d89cadf96e41f6fe2e4ded8a4118

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:27 GMT
etag: W/"622ba9e3-25f8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6

144.76.240.18

200 OK

2.7 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (36994)
Size
2.7 MB (2683764 bytes)
Hash
4ee9c29288f7b860b20dc29f73558e1c
54da107cab5c9562e08021744bdf48a5e12eecb8
126805680292899e11c7203cb69eaa1b6f4f9826dbe15d64d2199f00c474eec4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-90a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/reparaturHD.jpg

144.76.240.18

200 OK

77 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/reparaturHD.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/uploads/Images/reparaturHD.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 1488380
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-16b5fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/logo_cisco.png

176.9.22.205

200 OK

8.4 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_cisco.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 106 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
8.4 kB (8435 bytes)
Hash
167bea867784c14aa111cbe4e6f8ad07
545746de388fed788055142e64b4d904a274e42c
33facf2b5cd545be73f8ee9328cb83653135e2f1022eb09365ca6aabe8947b5e

HTTP Headers

GET /wp-content/uploads/images/logo_cisco.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:00 GMT
Content-Type: image/png
Content-Length: 8435
Last-Modified: Tue, 03 Sep 2019 11:50:25 GMT
Connection: keep-alive
ETag: "5d6e5381-20f3"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_avira.png

176.9.22.205

200 OK

4.1 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_avira.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 167 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4053 bytes)
Hash
0338b22c64dea73108d988db8ee85617
d1f8a031fca62b600a3794eeebafb34bf7eebca2
ab1563879eae28c26b35b20a499eb47f02a378abb1ea480f9d7223b847611c2f

HTTP Headers

GET /wp-content/uploads/images/logo_avira.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:00 GMT
Content-Type: image/png
Content-Length: 4053
Last-Modified: Tue, 03 Sep 2019 11:50:52 GMT
Connection: keep-alive
ETag: "5d6e539c-fd5"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_agfeo.png

176.9.22.205

200 OK

12 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_agfeo.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 188 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12547 bytes)
Hash
16ef7977cad69e734028e77091730698
6b3c5380378652b3d4c246235370c3fe506da7f7
8176108a936b823a088313af79380d20dfc08647671451fca47d459dc4141746

HTTP Headers

GET /wp-content/uploads/images/logo_agfeo.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:00 GMT
Content-Type: image/png
Content-Length: 12547
Last-Modified: Tue, 03 Sep 2019 11:50:26 GMT
Connection: keep-alive
ETag: "5d6e5382-3103"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_acmeo.png

176.9.22.205

200 OK

13 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_acmeo.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 150 x 48, 8-bit/color RGB, non-interlaced\012- data
Size
13 kB (12905 bytes)
Hash
025371339904a8b56aff549637bf8354
298a626bcfde2f4c7dbc8395f31ac583a66b38fd
9979b228781533adb1d9981ee799e17836373763c0c72e1cc9fbaf6e8c9fbb73

HTTP Headers

GET /wp-content/uploads/images/logo_acmeo.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:00 GMT
Content-Type: image/png
Content-Length: 12905
Last-Modified: Tue, 03 Sep 2019 11:50:26 GMT
Connection: keep-alive
ETag: "5d6e5382-3269"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logitech.png

176.9.22.205

200 OK

21 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logitech.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21102 bytes)
Hash
43d2020433504c91745abde8a1eee701
99dd74d75a0f43f6eb168c737eb80bebc4f03c8f
b34c5e2ab3d2a5a43cbe35563251580bb9628d7752d3e5380c5c4dbe50ca1e71

HTTP Headers

GET /wp-content/uploads/images/logitech.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:00 GMT
Content-Type: image/png
Content-Length: 21102
Last-Modified: Mon, 02 Sep 2019 10:56:27 GMT
Connection: keep-alive
ETag: "5d6cf55b-526e"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.der-pc-fritze.de/wp-content/uploads/Images/main8.jpg

144.76.240.18

200 OK

2.9 MB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/main8.jpg
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 3771x835, components 3\012- data
Size
2.9 MB (2911442 bytes)
Hash
6fc3d6e0e867feb1ebc9cb073f7d738a
a087592f31c1558f65d249f6e06531a85b00ba21
024549c1da5e942ea3b1ee644fa89c1c11f6750125b68f986a765a3ee2d25ddd

HTTP Headers

GET /wp-content/uploads/Images/main8.jpg HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/jpeg
content-length: 2911442
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-2c6cd2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/logo_avm.png

176.9.22.205

200 OK

8.6 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_avm.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 145 x 95, 8-bit/color RGBA, non-interlaced\012- data
Size
8.6 kB (8570 bytes)
Hash
4ae1351863089fe4a0423b6b7e8b4398
10b2bc8de6d2131b5942aae15d9559670c177d31
72e677f1fffe40dc3ff612b2bdc115cdf6466375314140423ecfb0cea59f05c6

HTTP Headers

GET /wp-content/uploads/images/logo_avm.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 8570
Last-Modified: Tue, 03 Sep 2019 11:50:24 GMT
Connection: keep-alive
ETag: "5d6e5380-217a"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_cpbx.png

176.9.22.205

200 OK

11 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_cpbx.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 140 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (10837 bytes)
Hash
99ff0a742729e87d27f17410d7dd037d
44392739c9504f66922ab2f008a915acc6fd4fc1
34ec317e70f09895875718fa39e347c157bf126ea7fa3fbebfd9295006e7e3be

HTTP Headers

GET /wp-content/uploads/images/logo_cpbx.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 10837
Last-Modified: Tue, 03 Sep 2019 11:50:25 GMT
Connection: keep-alive
ETag: "5d6e5381-2a55"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_devolo.png

176.9.22.205

200 OK

6.7 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_devolo.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 145 x 60, 8-bit colormap, non-interlaced\012- data
Size
6.7 kB (6685 bytes)
Hash
96999a71c214dbe00cedb3b3b04528e4
78a60e42da7a24d9ba13ece4862e42a61a013b9b
f675b2314b8448a5b028258a79ba0367fce0dcd561afb06c4df98dd4948edb5d

HTTP Headers

GET /wp-content/uploads/images/logo_devolo.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 6685
Last-Modified: Tue, 03 Sep 2019 11:50:25 GMT
Connection: keep-alive
ETag: "5d6e5381-1a1d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_funkwerk.png

176.9.22.205

200 OK

8.8 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_funkwerk.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 183 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8805 bytes)
Hash
cd02cc06b1d6b7875924f2d04d03ad94
b1972d7c702a201e4d305b5942c4e2de530530cd
ca2a8275129d3d392c58e3ecf511a57a8f62a7bc9b8f8c7e7730f912cf2ca47b

HTTP Headers

GET /wp-content/uploads/images/logo_funkwerk.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 8805
Last-Modified: Tue, 03 Sep 2019 11:50:25 GMT
Connection: keep-alive
ETag: "5d6e5381-2265"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/logo_gdata_k.png

176.9.22.205

200 OK

8.3 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/logo_gdata_k.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 52 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8296 bytes)
Hash
88c93360d88863245b9187fec1691858
12e95b1af66f8d3b0eb0b6106f9dba3131769e2d
a12a3a0f0197c27dece6dfb78427e950c5e99f708a685aabe012a89d0a3b56e5

HTTP Headers

GET /wp-content/uploads/images/logo_gdata_k.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 8296
Last-Modified: Tue, 03 Sep 2019 11:50:25 GMT
Connection: keep-alive
ETag: "5d6e5381-2068"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/Standort_Zentrale-Berlin-300x169.jpg

176.9.22.205

200 OK

13 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Standort_Zentrale-Berlin-300x169.jpg
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Size
13 kB (12701 bytes)
Hash
9f5ac36fde8cdd41fd7dbff0a7ec18c1
87646181eaf791fbb5ba15c0024f074fd641f835
4500914b438255aa208e82c9369aee526df9f05df5844b8ded0dbe68607f905c

HTTP Headers

GET /wp-content/uploads/images/Standort_Zentrale-Berlin-300x169.jpg HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/jpeg
Content-Length: 12701
Last-Modified: Mon, 09 Sep 2019 11:01:15 GMT
Connection: keep-alive
ETag: "5d7630fb-319d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.2.4

142.250.74.74

200 OK

1.7 kB

URL HTTP/2
fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.2.4
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
1.7 kB (1717 bytes)
Hash
c1d9fd1d5ae689bc2a73b0e67abc47c2
31e5724c28c320d73c6fef4d2294123a703faffd
7cb368ff5a688ef468969488222d7601831014fe7c1febe73364d826c62e1aa6

HTTP Headers

GET /css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&ver=2.2.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:22:00 GMT
date: Sat, 03 Dec 2022 04:22:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6

144.76.240.18

200 OK

1.7 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.7 kB (1662 bytes)
Hash
18820252991fdc17849e8e82e14324d1
4971d7fc1e6d1454b6fac195dd735be666f666b0
7623d5c46c036ac95ce1c651632a736a9f29e1addd7e5ee76905e8d4eda6e7a7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:58:27 GMT
etag: W/"622ba9e3-aab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/animate.min.css?ver=2.2.4

144.76.240.18

200 OK

4.1 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/animate.min.css?ver=2.2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (55156)
Size
4.1 kB (4053 bytes)
Hash
c3519b95eea394675ae7386c7da8de5a
97898e719636176f988abb42533ed39a0d2cea2e
0ab174ce9d9734e4db91833ef9d45ba0edeea0a14b33039f4125f5ba9f019693

HTTP Headers

GET /wp-content/themes/onepress/assets/css/animate.min.css?ver=2.2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-d815"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

144.76.240.18

200 OK

22 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
22 kB (21575 bytes)
Hash
1a3eee3fe03f769264ffd73d0987846b
fc99d1a8343abb2beaa0c9e0978ffd7909f9da36
1f8681ee64005f3be1af037eb2837c20a758dec44db8408722f2fa7173272aea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-50ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.110.woff2

216.58.207.227

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.110.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 13344, version 1.0\012- data
Size
13 kB (13344 bytes)
Hash
2ab7d819f72aa0a832801b88db9b82f3
a8e8fbb22e47b7240467a39a6e1b03aec05b8061
26c46aebc114b2ab4ecff834d409198964eb4be5de1636843e035b2e904f649a

HTTP Headers

GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.110.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 16:30:07 GMT
expires: Wed, 29 Nov 2023 16:30:07 GMT
cache-control: public, max-age=31536000
age: 301914
last-modified: Mon, 09 May 2022 20:13:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6

144.76.240.18

200 OK

1.3 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (2577)
Size
1.3 kB (1332 bytes)
Hash
e3bb85ac7ee63feed8860f654a37c4df
d0c531e77b78f446a8bb9b93a1e3c8e3c6183e74
82567cfb1c3e884d8266bbb8edab6be64c6d2c880686675b9cc671fee5651d20

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-a12"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.119.woff2

216.58.207.227

200 OK

52 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.119.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 51568, version 1.0\012- data
Size
52 kB (51568 bytes)
Hash
fef81e374f5756bc5772978ef223dd60
e590600dfd1f8739ec9df43651d3c6e876ef584a
b204913c9832e2ea49df683dab67ef73146bfd43a1845458e68fde81bc25a8aa

HTTP Headers

GET /s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:27:10 GMT
expires: Fri, 01 Dec 2023 08:27:10 GMT
cache-control: public, max-age=31536000
age: 158091
last-modified: Mon, 09 May 2022 19:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.2.4

144.76.240.18

200 OK

32 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65317)
Size
32 kB (32470 bytes)
Hash
a42282ffa463d4c01bbe3a4582e89e1d
fa5c913d5a422a0e86c80761c7c395ffced27122
d2aee8664102037f1df24735aa94e8c947c682f91f190ee43f9348e2542e80b7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-1f915"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1

144.76.240.18

200 OK

14 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (3228)
Size
14 kB (14497 bytes)
Hash
a0dbc8606ad589f019dd1a8a3f4fba19
e60ed7b50b605c39640bb94d8d9fe7f2f584860d
b2fa7862a3ef6a80d9c1d37bd319c5794b6a75587912ed1241d2da9386f47c5b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-d4e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/Standort_Magdeburg-300x169.jpg

176.9.22.205

200 OK

15 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Standort_Magdeburg-300x169.jpg
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Size
15 kB (15242 bytes)
Hash
3b0435cd2bb9fa6f3e053a29042fcdc4
ad933568c90df30f0f7167336ad252691dd066b4
72e2dbf5814589b7e111d2b6f0343374393c7c20a18f1d0b81ab83b4a136bd61

HTTP Headers

GET /wp-content/uploads/images/Standort_Magdeburg-300x169.jpg HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/jpeg
Content-Length: 15242
Last-Modified: Mon, 09 Sep 2019 11:01:15 GMT
Connection: keep-alive
ETag: "5d7630fb-3b8a"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6

144.76.240.18

200 OK

12 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (10019)
Size
12 kB (12443 bytes)
Hash
1b744e5c6a6ccab983f1c4c74563b36f
c7f29a165cc8a22a79e1c30c1421ee655bd68fd2
1a3c650c3c30557f8d392f1251f886a2ff33bcc5227d8e04236aef5dc98223eb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-4824"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/Allerdata.PNG

176.9.22.205

200 OK

22 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Allerdata.PNG
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 341 x 123, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21473 bytes)
Hash
5c5afb397d98964d976ace6fb78970b3
b596119e2d7ca4d6181bad7ce74d6abff7fe8636
b46cd03e56944ece3788346ccfa298af82f74fee9c0eb4a5595056a6a3b0a0c8

HTTP Headers

GET /wp-content/uploads/images/Allerdata.PNG HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 21473
Last-Modified: Thu, 26 Sep 2019 10:55:10 GMT
Connection: keep-alive
ETag: "5d8c990e-53e1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.der-pc-fritze.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

144.76.240.18

200 OK

16 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (6494), with no line terminators
Size
16 kB (15856 bytes)
Hash
c0e1a5f72a99f6fa6b1170f3c38172f4
8231c0647b21bac50cb508ca10d412ceede92e73
60c888c46df6c1a0dd20a1e4eefb302328f4a31ea07d1e3ad95dadb34882b58f

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-195e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/font-awesome.min.css?ver=4.7.0

144.76.240.18

200 OK

7.1 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/font-awesome.min.css?ver=4.7.0
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (30857)
Size
7.1 kB (7124 bytes)
Hash
706c2b6241e07c207394a39e2cee142b
7a60c17a17cd0f1e005de3110c5f07e54f4d8435
d03a170ef919f4a1483a4c3ec80d0fabbf62c2fcf4ff9b853b48fe5f2d3ca02a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/onepress/assets/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-792c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.117.woff2

216.58.207.227

200 OK

9.6 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.117.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 9576, version 1.0\012- data
Size
9.6 kB (9576 bytes)
Hash
96bf02457c98b192014d72ebdf53b21a
fd50fd2ad4e863c7c0f0bee274c3cfd91b8eca68
2b2a49516984beb189756b2dcbaa9786e3038a7767ff3b9e852f02386a5706a6

HTTP Headers

GET /s/notosansjp/v42/-F62fjtqLzI2JPCgQBnw7HFow2oe2EcP5pp0erwTqsSWs9Jezazjcb4.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:31:47 GMT
expires: Wed, 29 Nov 2023 01:31:47 GMT
cache-control: public, max-age=31536000
age: 355814
last-modified: Mon, 09 May 2022 20:13:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/plugins.js?ver=2.2.4

144.76.240.18

200 OK

78 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/plugins.js?ver=2.2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, Unicode text, UTF-8 text, with very long lines (25010)
Size
78 kB (78077 bytes)
Hash
029a7f602ca462df49b55630b17145f3
2fdc3517c21a424770d5de0b5fae6051a4cfae63
c874fefc42a6b98bef491a93d482d757151e98a1b8c8c35bff090096cfdd663a

HTTP Headers

GET /wp-content/themes/onepress/assets/js/plugins.js?ver=2.2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-17a8c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQMisq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2

216.58.207.227

200 OK

9.8 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQMisq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 9840, version 1.0\012- data
Size
9.8 kB (9840 bytes)
Hash
7cf0cccae49d2a1c2bcdbf854277bae6
17bd6bda23f9c92fc6e389deb9ca4248759c0df4
aa0e92ee909c74589e4c701a4667cd43abcb5701ac8ad83c728477561a5c2f99

HTTP Headers

GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQMisq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:20:26 GMT
expires: Wed, 29 Nov 2023 14:20:26 GMT
cache-control: public, max-age=31536000
age: 309695
last-modified: Mon, 09 May 2022 20:13:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4

144.76.240.18

200 OK

20 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
20 kB (19951 bytes)
Hash
aec9b2ac6fbc707d006719ba152062f1
b17406867f6d3ee2836bb8907a9a132d0aadbcf9
9ce58861fe2fa521437d1fde25857f207e828e313dc054654f6219d0b03491e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/onepress/assets/js/theme.js?ver=2.2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-61af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5

142.250.74.74

200 OK

48 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
48 kB (47563 bytes)
Hash
68f6d584d63991fb14b13be9316322cf
04aac2a544dff175c5747fa7333acba3d986c014
b6f24bfb87f53fc8583ecc695889a13887db134bd5a987922a12b21095c94d89

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:22:00 GMT
date: Sat, 03 Dec 2022 04:22:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5

144.76.240.18

200 OK

17 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (15224)
Size
17 kB (17280 bytes)
Hash
bc947f61ce86b14d58056ceb8ff3b5dd
2c9c30c8c3b16aabe902c17b859f67b54c506860
137e95faf4aa70270fe042349d2a4a5219a7859698724aac7f0c3d9f6bc6a530

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-4705"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.116.woff2

216.58.207.227

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.116.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 12404, version 1.0\012- data
Size
12 kB (12404 bytes)
Hash
d82edbd42a281695636b54394df29c92
806af281ebdd94509f936ce81b6769e3189863bf
d6a34ec967df6e59abc2e98316b58c9897d6edc2d4960b4a5fe340321d1e45c9

HTTP Headers

GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.116.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 16:11:37 GMT
expires: Wed, 29 Nov 2023 16:11:37 GMT
cache-control: public, max-age=31536000
age: 303024
last-modified: Mon, 09 May 2022 20:13:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cbs-it-service.de/wp-content/uploads/images/SolTec.PNG

176.9.22.205

200 OK

17 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/SolTec.PNG
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 305 x 188, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (17392 bytes)
Hash
48d539799222c035717f120c74d0b69b
9c34605757ea0605d92cdf78573fb3d801e0dc99
7c207116bc9800d568395601189b9e412d20cfe1b15c596486ec93782976de20

HTTP Headers

GET /wp-content/uploads/images/SolTec.PNG HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 17392
Last-Modified: Thu, 26 Sep 2019 10:49:04 GMT
Connection: keep-alive
ETag: "5d8c97a0-43f0"
X-Powered-By: PleskLin
Accept-Ranges: bytes

fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2

216.58.207.227

200 OK

9.6 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 9580, version 1.0\012- data
Size
9.6 kB (9580 bytes)
Hash
99baeecae33123ccc9f13d840e9e02cd
cdc087df1ffcb49346aca42ff3dd2f8d53278a6c
de705ff6c189f7c915b7516d62bd3076f83c4973b8a506640b08a6ddbb0186e8

HTTP Headers

GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQaioq1xVxjfp_dakBof6Bs-tb3ab2FNISVac.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:20:14 GMT
expires: Wed, 29 Nov 2023 14:20:14 GMT
cache-control: public, max-age=31536000
age: 309707
last-modified: Mon, 09 May 2022 20:13:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1

144.76.240.18

200 OK

20 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text, with very long lines (25283)
Size
20 kB (19864 bytes)
Hash
f68d1fa3a7676724e372c31cecc9e030
d2f542a91d98b85174ed54dfbaa541f538db268c
56f27bcc9fd87bb6269f98841b5108d823f245f1f1f5e2f4405d59dacf405bb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-6378"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/Standort_Kloster-Lehnin-300x169.png

176.9.22.205

200 OK

91 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Standort_Kloster-Lehnin-300x169.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 300 x 169, 8-bit/color RGBA, non-interlaced\012- data
Size
91 kB (90565 bytes)
Hash
0828d71a5c8192da6798fc14730f42b4
16a60587adecac9eedea8be8cf46914676b5166f
131aff737c67259a11f9b4927c8ac38a4b0616e7df3a71148b53099b3cea405a

HTTP Headers

GET /wp-content/uploads/images/Standort_Kloster-Lehnin-300x169.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 90565
Last-Modified: Mon, 09 Sep 2019 11:01:15 GMT
Connection: keep-alive
ETag: "5d7630fb-161c5"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/PCe.PNG

176.9.22.205

200 OK

3.1 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/PCe.PNG
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 218 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3129 bytes)
Hash
37ae7f2f5c67795bf01dd5a7600a5a0e
896b90d86cba14347b175b61c08e93ee5660d663
b919a6f0cc6354412e35f9052e23bf5189356392042de91cd6a7a792346ba550

HTTP Headers

GET /wp-content/uploads/images/PCe.PNG HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 3129
Last-Modified: Thu, 26 Sep 2019 10:52:24 GMT
Connection: keep-alive
ETag: "5d8c9868-c39"
X-Powered-By: PleskLin
Accept-Ranges: bytes

fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2

216.58.207.227

200 OK

53 kB

URL HTTP/2
fonts.gstatic.com/s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), CFF, length 53112, version 1.0\012- data
Size
53 kB (53112 bytes)
Hash
65d1a8361b972df4b246ae506b158931
ac28d0e5de6f08bbff6598c6e7fbedb746368833
72886b29a4caed5ecd641a108d1b0393e3f94ecc551fc926dffe047e3cf35b4b

HTTP Headers

GET /s/notosansjp/v42/-F6pfjtqLzI2JPCgQBnw7HFQei0q1xVxjfp_dakBof6Bs-tb3ab2FNISVac.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.der-pc-fritze.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 53112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:37:57 GMT
expires: Wed, 29 Nov 2023 01:37:57 GMT
cache-control: public, max-age=31536000
age: 355444
last-modified: Mon, 09 May 2022 20:07:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.cbs-it-service.de/wp-content/uploads/images/Standort-Liebenwalde1.png

176.9.22.205

200 OK

86 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Standort-Liebenwalde1.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 300 x 169, 8-bit/color RGB, non-interlaced\012- data
Size
86 kB (85513 bytes)
Hash
878f6140a46763bb60a03e34af7edca9
8cdb85d07a84baab7b012e7769a092d63785d762
0cffbd4ece19b95b7aae63121633433025766385c035afa550f01d251952018b

HTTP Headers

GET /wp-content/uploads/images/Standort-Liebenwalde1.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 85513
Last-Modified: Mon, 09 Sep 2019 11:01:15 GMT
Connection: keep-alive
ETag: "5d7630fb-14e09"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.2.4

144.76.240.18

200 OK

63 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (32075)
Size
63 kB (63148 bytes)
Hash
176047ff7e3e875adf144a51ca92559d
e2cb0a3866eb57802fdf31b7d0d4a3f31bc2cedf
02fc6db4983699e2c2c92de04cccfc12c95cd3a04a4086def03a8db5fbe8989d

HTTP Headers

GET /wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-b641"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.der-pc-fritze.de/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

144.76.240.18

200 OK

20 kB

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (19111)
Size
20 kB (20300 bytes)
Hash
ed98a856c15d94a1c1dc50656f9b33d3
03b7c75b217918bb0cadb2576bae490af822409f
289960cc422d7099aaf4d272bdcd44868fcf5838321fddf80555973d3d36c5ba

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-4b3d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 04:22:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cbs-it-service.de/wp-content/uploads/images/Bild_folgt.png

176.9.22.205

200 OK

134 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Bild_folgt.png
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 300 x 169, 8-bit/color RGBA, non-interlaced\012- data
Size
134 kB (134380 bytes)
Hash
778dfaa1a81a5905872d836730c473d4
d2fed26623f28dd6996261801a24acd85c0a1237
24785ccc9b4bbd9c1c9cf910d53f4935861930a1ec13fbcdc8f44f524854c410

HTTP Headers

GET /wp-content/uploads/images/Bild_folgt.png HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 134380
Last-Modified: Mon, 09 Sep 2019 11:01:15 GMT
Connection: keep-alive
ETag: "5d7630fb-20cec"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.cbs-it-service.de/wp-content/uploads/images/Ulmenstr.PNG

176.9.22.205

200 OK

584 kB

URL HTTP/1.1
www.cbs-it-service.de/wp-content/uploads/images/Ulmenstr.PNG
IP
176.9.22.205:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1163 x 506, 8-bit/color RGBA, non-interlaced\012- data
Size
584 kB (583956 bytes)
Hash
09d6f547ea5ead49ec9eb097a8ef747d
c339f011d8bcaeb873a753000c901c0701e18739
2c767ae64da858a6c48c37fe6009188418de80f089d0be491286fbd8a95b5ca1

HTTP Headers

GET /wp-content/uploads/images/Ulmenstr.PNG HTTP/1.1
Host: www.cbs-it-service.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 04:22:01 GMT
Content-Type: image/png
Content-Length: 583956
Last-Modified: Thu, 26 Sep 2019 10:39:35 GMT
Connection: keep-alive
ETag: "5d8c9567-8e914"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.der-pc-fritze.de/wp-content/uploads/2019/10/favicon-1.ico

144.76.240.18

200 OK

1.2 kB

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/2019/10/favicon-1.ico
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7bacbfca4d4a0d1387ab0b4854ec66de
408ae50ebbd857043fd3e5d1894d32ebf3436682
d7b2c6c62ce517d0ba6de667a10649cb9f8593ab2087e6cbfcbe777ca7dd1b05

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/10/favicon-1.ico HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:01 GMT
content-type: image/vnd.microsoft.icon
content-length: 1150
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-47e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sAm+Klostersteig+16,+14797+Kloster+Lehnin!5e0!6i10

216.58.211.4

200 OK

945 B

URL HTTP/2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sAm+Klostersteig+16,+14797+Kloster+Lehnin!5e0!6i10
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1684)
Size
945 B (945 bytes)
Hash
9261d998c49a2899247e7a3982cab676
a76257425c1fd311d34fbb4d7b0f3fb93f94a37e
444eb00fc9c3f20cf4b3d85ae8815faa911507aa64e92e117d808cfe844fddbf

HTTP Headers

GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sAm+Klostersteig+16,+14797+Kloster+Lehnin!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.der-pc-fritze.de/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 04:22:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-KcM7L4P0xnRMHPVQW8b4BA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 945
x-xss-protection: 0
server-timing: gfet4t7; dur=261
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js

142.250.74.99

200 OK

69 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
69 kB (69315 bytes)
Hash
ed2723b79bc5eab77a130d1494114fc3
868e33258f37face8b5d0fe4420632505c1d25be
4707d296c9f44bffe17c3b0a98ea5ce6f0e83cf700ba691ede674daf6f6b4443

HTTP Headers

GET /maps-api-v3/embed/js/51/2/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69315
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 21:46:35 GMT
expires: Thu, 30 Nov 2023 21:46:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 22:32:00 GMT
content-type: text/javascript
age: 196527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 204490
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
17 kB (17271 bytes)
Hash
22e27fab98a5e664c0495b6bb4fabc91
d1b94d9e9c6eb4b3909693657259552ba6ae4291
61b065cd0a958708917ca97f7ae4ef3ff65e4a8466f96d99eaf5e2f047a40a9b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 204488
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9449 bytes)
Hash
249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: h_QxhlhIxUS0VSjt1z50xNf0u1eB6c1WPTJUfvwGQA-t4M0zmXo2AA==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:03:42 GMT
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
age: 22704
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.transitions.css?ver=5.9.5

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.transitions.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/logo-showcase/css/owl.transitions.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-117c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.carousel.css?ver=5.9.5

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.carousel.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/logo-showcase/css/owl.carousel.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-5c4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lobster

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lobster
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lobster HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:22:00 GMT
date: Sat, 03 Dec 2022 04:22:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-21f91"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-9.css?ver=1647028849

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-9.css?ver=1647028849
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-9.css?ver=1647028849 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 20:00:49 GMT
etag: W/"622baa71-419"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-21826"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/elementor/css/global.css?ver=1647028806

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/elementor/css/global.css?ver=1647028806
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1647028806 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 20:00:06 GMT
etag: W/"622baa46-63ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.theme.css?ver=5.9.5

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/logo-showcase/css/owl.theme.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/logo-showcase/css/owl.theme.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-681"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: W/"622ba729-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-4a6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Noto+Sans+JP%3A100%2C300%2C400%2C500%2C700%2C900%2C100i%2C300i%2C400i%2C500i%2C700i%2C900i&display=swap&subset=all&ver=3.0.13

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Noto+Sans+JP%3A100%2C300%2C400%2C500%2C700%2C900%2C100i%2C300i%2C400i%2C500i%2C700i%2C900i&display=swap&subset=all&ver=3.0.13
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Noto+Sans+JP%3A100%2C300%2C400%2C500%2C700%2C900%2C100i%2C300i%2C400i%2C500i%2C700i%2C900i&display=swap&subset=all&ver=3.0.13 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 04:22:00 GMT
date: Sat, 03 Dec 2022 04:22:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-35ed"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-1917.css?ver=1647028806

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/elementor/css/post-1917.css?ver=1647028806
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1917.css?ver=1647028806 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 20:00:06 GMT
etag: W/"622baa46-400"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-19fb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:58:32 GMT
etag: W/"622ba9e8-a876"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/style.css?ver=5.9.5

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/style.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/onepress/style.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-19885"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/lightgallery.css?ver=5.9.5

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/themes/onepress/assets/css/lightgallery.css?ver=5.9.5
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/onepress/assets/css/lightgallery.css?ver=5.9.5 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-5970"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:56:27 GMT
etag: W/"622ba96b-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/uploads/Images/badge2.png

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/uploads/Images/badge2.png
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/Images/badge2.png HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: image/png
content-length: 258294
last-modified: Fri, 11 Mar 2022 19:46:49 GMT
etag: "622ba729-3f0f6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.der-pc-fritze.de/wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4

144.76.240.18

200 OK

0 B

URL HTTP/2
www.der-pc-fritze.de/wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4
IP
144.76.240.18:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/logo-showcase/js/owl.carousel.js?ver=2.4 HTTP/1.1
Host: www.der-pc-fritze.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.der-pc-fritze.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 04:22:00 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 19:46:48 GMT
etag: W/"622ba728-ce3d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations