Report - intranet.der-junge-chor.de/

Report Overview

Submitted URL
intranet.der-junge-chor.de/
IP
82.165.117.197
ASN
#8560 IONOS SE
Submitted
2022-12-05 12:08:42
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.61.95
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
intranet.der-junge-chor.de	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.3 kB	234 kB	82.165.117.197
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	intranet.der-junge-chor.de/adm_program/index.php	Malware
2022-12-05	medium	intranet.der-junge-chor.de/adm_program/overview.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/js/bootstrap.bundle.min.js	84 kB	2023-03-07	2024-04-24
Pretty URL intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/js/bootstrap.bundle.min.js IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-24 00:05:00 Times Seen5278 Hash f81d0a1705048649befc8b595e455a94 aec551e4d573463088fca7d14fb644eb389f1839 b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b Loading...

	intranet.der-junge-chor.de/adm_program/libs/client/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL intranet.der-junge-chor.de/adm_program/libs/client/jquery/jquery.min.js IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-25 11:36:36 Times Seen261138 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	intranet.der-junge-chor.de/adm_program/overview.php	1.2 kB	2023-03-08	2023-03-08
Pretty URL intranet.der-junge-chor.de/adm_program/overview.php IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:50:39 Last Seen2023-03-08 16:50:39 Times Seen1 Hash 71a8cfc54a7ae2b47047f5200ee902b8 b486f447704264e658c4c3113da69f2ee40394bf b3be735059303bf0d84cd1950770ef30b78efc3cbfcba4407ec02f0db811a71f Loading...

	intranet.der-junge-chor.de/adm_program/overview.php	1.0 kB	2023-03-08	2023-03-08
Pretty URL intranet.der-junge-chor.de/adm_program/overview.php IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:50:39 Last Seen2023-03-08 16:50:39 Times Seen1 Hash 1d2c73a3ba1a42bbb4f952b471e89ed5 06aa74b02bd8cfa9a84b01a6ae1788df8e02d822 7f975ff716cd100deb38ee67d36bf0fc136aa789c3fd62b84619e85157f01e69 Loading...

	intranet.der-junge-chor.de/adm_program/overview.php	98 B	2023-03-08	2023-03-08
Pretty URL intranet.der-junge-chor.de/adm_program/overview.php IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:50:39 Last Seen2023-03-08 16:50:39 Times Seen1 Hash 2efbafe97ad0bfd7d8e692aa0a9d4acc 26c750b82f667fb5d0ad538cc59db70bcb9ad47a e80fb28e765e6a28cdebba3848ebe807b7e249211f3e1f10db8882f27c3053cc Loading...

	intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.js	21 kB	2023-03-07	2024-04-18
Pretty URL intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.js IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:42 Last Seen2024-04-18 13:56:09 Times Seen2159 Hash 4a48532bf0b17c058b8b6854f49de23f 9cbada4bd617c86c638cf2ebddec724ad596907b e55842a856a6d829feca3c3ad736c136b6c7549e9247274f78aa296259e06e24 Loading...

	intranet.der-junge-chor.de/adm_program/system/js/common_functions.js	6.8 kB	2023-03-08	2023-03-08
Pretty URL intranet.der-junge-chor.de/adm_program/system/js/common_functions.js IP 82.165.117.197 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:50:39 Last Seen2023-03-08 16:50:39 Times Seen1 Hash 10470974ff721fae068bc837a0ea9005 9cc32ad3dd922fd0d18700d284fb500f5f21c3a5 bdfc2d09601415a5d05bc568f1aa6bbb3a78b03df320b82139c1f9890f12e789 Loading...

HTTP Transactions (39)

URL IP Response Size

intranet.der-junge-chor.de/

82.165.117.197

301 Moved Permanently

243 B

URL HTTP/1.1
intranet.der-junge-chor.de/
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
243 B (243 bytes)
Hash
c4ddbe17614d5f67179ad5028095a525
1b8fb4c2abc8c32b4028e1d3acdf914513c5c4d9
44f5c158431d383339256647a5170f39489067a5a3bfa25da48a4d69508cc7e8

HTTP Headers

GET / HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 12:08:31 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin
Location: https://intranet.der-junge-chor.de/
Content-Length: 243
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7223
Expires: Mon, 05 Dec 2022 14:08:54 GMT
Date: Mon, 05 Dec 2022 12:08:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8659
Expires: Mon, 05 Dec 2022 14:32:50 GMT
Date: Mon, 05 Dec 2022 12:08:31 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4593
Cache-Control: max-age=171561
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 12:08:31 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:47:52 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PfOE9nnK8QbFBFz9FUGoMQHi1cRvXKSij54O6ban47/p/zW82T8TVNYeUVi/lIJo5ulejoSqa5M=
x-amz-request-id: 6TY91B736YHCQ1VX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 11:47:58 GMT
age: 1233
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 11:20:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2896
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 12:08:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d07a745cc702bdbf16cecf5716110b79
fb51bddfdc21a2bcea3e54dab1304392067bccab
f6835e966591278d564e2bbeeb988cde2fcd310c75b6112c6a6a8cc7da6c9477

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122286
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 12:08:32 GMT
Etag: "638d19ee-1d7"
Expires: Tue, 06 Dec 2022 22:06:38 GMT
Last-Modified: Sun, 04 Dec 2022 22:06:38 GMT
Server: nginx
Content-Length: 471

intranet.der-junge-chor.de/

82.165.117.197

303 See Other

0 B

URL HTTP/2
intranet.der-junge-chor.de/
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 303 See Other
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
set-cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei; path=/; domain=intranet.der-junge-chor.de; secure; HttpOnly; SameSite=lax;HttpOnly;Secure;SameSite=Strict
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
location: https://intranet.der-junge-chor.de/adm_program/index.php
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/index.php

82.165.117.197

303 See Other

0 B

URL HTTP/2
intranet.der-junge-chor.de/adm_program/index.php
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /adm_program/index.php HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 303 See Other
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
location: https://intranet.der-junge-chor.de/adm_program/overview.php
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/overview.php

82.165.117.197

200 OK

3.7 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/overview.php
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1591)
Size
3.7 kB (3737 bytes)
Hash
87ac89240dcbffe400bb9a77305d5aa6
6069ba1036aa9e7e2e000045c0a8f98522ef74aa
79ccdeb2b7d295c2720acdfe7d09c0fc5857ab6800c378d88b623fb192f13313

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /adm_program/overview.php HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
vary: Accept-Encoding
content-encoding: gzip
content-length: 3737
content-type: text/html; charset=utf-8
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/solid.min.css

82.165.117.197

200 OK

309 B

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/solid.min.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
7ad5fdaa833cc7b39ddf8d2353aba111
4cc588abfdb141a15f82ca17ae50b678bc92f4fa
18f45410f0ab76d538db874f996bc1bb1cbafe13ed35d585aa90671e038e52c2

HTTP Headers

GET /adm_program/libs/client/fontawesome/css/solid.min.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "29d-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/brands.min.css

82.165.117.197

200 OK

307 B

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/brands.min.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (489)
Size
307 B (307 bytes)
Hash
18271626072fb76f18e2e8775e5f362d
163f69e46fa95056d0782af2ca0ced7f1a4ddaeb
8f55e4505652eee12883f46241ca956db42b89068da50e0cf1c5ea49f1b2ac76

HTTP Headers

GET /adm_program/libs/client/fontawesome/css/brands.min.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "2a3-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 307
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.css

82.165.117.197

200 OK

1.3 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (1460)
Size
1.3 kB (1299 bytes)
Hash
8786cd8041431d860694eed4e4df5493
ad176b25138137c05527a1a93f9b1d2bd9819bb6
2f1ab64452cbd8b4a75b5f778aaadd7f8a9c194ef48c5e2e9132393b68d21a85

HTTP Headers

GET /adm_program/libs/client/cookieconsent/cookieconsent.min.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "135e-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1299
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 11:08:58 GMT
cache-control: public,max-age=3600
age: 3574
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.js

82.165.117.197

200 OK

6.8 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/cookieconsent/cookieconsent.min.js
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (20693), with no line terminators
Size
6.8 kB (6756 bytes)
Hash
58a872ad8da4bad737e618cf78b55feb
1917e7662a1c0d1034c3056c6ebd0e9ae2d542f1
5ddc446ff4623ed98a827c66171c9d5d2809d7f679b0681eb088765e272849bb

HTTP Headers

GET /adm_program/libs/client/cookieconsent/cookieconsent.min.js HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "50d5-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6756
content-type: text/javascript
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/fontawesome.min.css

82.165.117.197

200 OK

12 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/css/fontawesome.min.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (57317)
Size
12 kB (12475 bytes)
Hash
6d025b7723bc10a43982ce7806c29606
fa96a579b2df625e6484f7b8bb70f818728a2d3d
91273dae4d99b478b435da4dce3ac9469000004b80a0145228c7b27481302bfb

HTTP Headers

GET /adm_program/libs/client/fontawesome/css/fontawesome.min.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "e09f-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12475
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/css/bootstrap.min.css

82.165.117.197

200 OK

24 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/css/bootstrap.min.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65326)
Size
24 kB (24110 bytes)
Hash
2c24cdf72824eafdf0869112250fbcb7
6393bb4bd9d2c406471c3db6a86c250034885d5c
2f9fef610e18d81e5b22fe6a3c7f514501d1bb3678a40b0fce6197e1568f0912

HTTP Headers

GET /adm_program/libs/client/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "27681-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 24110
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/system/js/common_functions.js

82.165.117.197

200 OK

2.3 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/system/js/common_functions.js
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
2.3 kB (2320 bytes)
Hash
f32dce3e62e0d384132e26daf5311312
8561f476fba6ccc8b5f7d711b5ca866599e2888c
b9a27703ec7bf0c10439fa973b3f79e55191df63f7629eeec0858fd1117b94fd

HTTP Headers

GET /adm_program/system/js/common_functions.js HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "1aae-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2320
content-type: text/javascript
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_themes/einfach/css/admidio.css

82.165.117.197

200 OK

2.6 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_themes/einfach/css/admidio.css
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
2.6 kB (2641 bytes)
Hash
8eaa1836ee0cfa86bdc79844d06387c1
0a3fa6e6bf913f4d683cb96ae9812d415335c3b1
f22bf74d5949f495a469fccffa1b61c345714c02a4300f7571d3a30cdc375097

HTTP Headers

GET /adm_themes/einfach/css/admidio.css HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Wed, 06 Jul 2022 22:17:39 GMT
etag: "280d-5e32a56527790-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2641
content-type: text/css
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/js/bootstrap.bundle.min.js

82.165.117.197

200 OK

22 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/bootstrap/js/bootstrap.bundle.min.js
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65299)
Size
22 kB (21848 bytes)
Hash
8cffe231e10bbcd8ba5f2a299a72243d
fb32d41e34b530466f57552a14f63affadc20b46
5b5f5a17d2b22241bc140d6f4ee60d6a653de9fb2c8aa4c21eb02621e8bd8a50

HTTP Headers

GET /adm_program/libs/client/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "1499a-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 21848
content-type: text/javascript
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4578
Cache-Control: max-age=166478
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 12:08:32 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:23:10 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

intranet.der-junge-chor.de/adm_program/libs/client/jquery/jquery.min.js

82.165.117.197

200 OK

31 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/jquery/jquery.min.js
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65447)
Size
31 kB (30902 bytes)
Hash
31d53c8cdce8012a24abc8e84aa972e5
7287b1ec5d88304ba44fc1958b8de9596274c4e3
1b72bc7f54bc9170e605f6c4bb5529668c4ee3efeee602fdb63036b45b49f41c

HTTP Headers

GET /adm_program/libs/client/jquery/jquery.min.js HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "15d9d-5e96439f65680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30902
content-type: text/javascript
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_themes/einfach/images/logo.png

82.165.117.197

200 OK

28 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_themes/einfach/images/logo.png
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
PNG image data, 300 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28199 bytes)
Hash
ebf4c1e0f278ca681bb65e8a888bb8b5
cc781600fd15b9896790d69fabed0c06629e6715
85ed947c3ae6a94f0ed5f9c6402035670f2f9849414b73cfb7ea590ff14d255d

HTTP Headers

GET /adm_themes/einfach/images/logo.png HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Wed, 06 Jul 2022 22:17:42 GMT
etag: "6e27-5e32a567512f0"
accept-ranges: bytes
content-length: 28199
content-type: image/png
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/webfonts/fa-solid-900.woff2

82.165.117.197

200 OK

80 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_program/libs/client/fontawesome/webfonts/fa-solid-900.woff2
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
Web Open Font Format (Version 2), TrueType, length 80148, version 331.17301\012- data
Size
80 kB (80148 bytes)
Hash
c500da19d776384ba69573ae6fe274e7
6290834672aba86d5b6c1c73b30b57c9c53996f7
cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658

HTTP Headers

GET /adm_program/libs/client/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Sat, 24 Sep 2022 03:52:42 GMT
etag: "13914-5e96439f65680"
accept-ranges: bytes
content-length: 80148
content-type: font/woff2
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_themes/einfach/images/apple-touch-icon.png

82.165.117.197

200 OK

6.1 kB

URL HTTP/2
intranet.der-junge-chor.de/adm_themes/einfach/images/apple-touch-icon.png
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
6.1 kB (6149 bytes)
Hash
d0cb3a77d9ca595ec8aec59ea083aa28
b18599a670ef6f5650f49e6bbadbf6fd7b2d211e
c2481a0039a89d4ed0c84cf1f29365e1d2ae10894d849b6f424fa73c374dc04d

HTTP Headers

GET /adm_themes/einfach/images/apple-touch-icon.png HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Wed, 06 Jul 2022 22:17:41 GMT
etag: "1805-5e32a5666bb10"
accept-ranges: bytes
content-length: 6149
content-type: image/png
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

intranet.der-junge-chor.de/adm_themes/einfach/images/favicon-16x16.png

82.165.117.197

200 OK

766 B

URL HTTP/2
intranet.der-junge-chor.de/adm_themes/einfach/images/favicon-16x16.png
IP
82.165.117.197:0
ASN
#8560 IONOS SE

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
766 B (766 bytes)
Hash
66d648796eb8f6b57ac2d700b90283c0
1c704738e03def0ce3ad99b45195e6bab684878e
c9c91c7c1a9a0e74f3f94e02bb4f8cf0c9684da8380251203e6d09ae9193bc6d

HTTP Headers

GET /adm_themes/einfach/images/favicon-16x16.png HTTP/1.1
Host: intranet.der-junge-chor.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intranet.der-junge-chor.de/
Connection: keep-alive
Cookie: ADMIDIO_DjC_admidio_adm_SESSION_ID=3cvft9ioqivnpmag7ji53kitei
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
content-security-policy: default-src 'self'; upgrade-insecure-requests; font-src * 'unsafe-inline'; img-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'
last-modified: Wed, 06 Jul 2022 22:17:41 GMT
etag: "2fe-5e32a566c77d0"
accept-ranges: bytes
content-length: 766
content-type: image/png
date: Mon, 05 Dec 2022 12:08:32 GMT
server: Apache
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.43.61.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.61.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 73tK6w8bPBPbaTHre0oR3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8Bg7TUf488xtZGf2jloIgj0iHGM=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6086
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 12:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6086
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 12:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6086
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 12:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6086
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 12:08:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6086
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 12:08:34 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11253 bytes)
Hash
557fea28a0a540d2ffdadd828e03de0b
c314368e2e73dabf2c5d856e2c3e1fae610a3005
0fdd195911cdfff46a6dd8ba7b760953e5317fd7ee88abf1e19458518979fdee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11253
x-amzn-requestid: e0561a00-8657-4af0-b24c-08b328282f79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_wKE9coAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1334-2844266d51d5c5672f34ff61;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v2OgP5Rhp06ijoZU2F8vOhLjBfHdBMPa2mOIg6EiYJrgCRbrKgJz2g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 51387
etag: "c314368e2e73dabf2c5d856e2c3e1fae610a3005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5681 bytes)
Hash
43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:44 GMT
age: 51530
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13647 bytes)
Hash
6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Au3s215cCYumuz8qJ7dQFYQ45s4XRo0-zzFcnRLv7gNb3aFHpKnGwg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 51387
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4666 bytes)
Hash
c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:05 GMT
age: 51869
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10396 bytes)
Hash
24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 12:09:06 GMT
age: 86368
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6826 bytes)
Hash
a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d5IKLNblcA9AzCoGMpGmIGwUu-kQlHlouju5mm2NwsSOin4MFT40mg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:56:21 GMT
age: 51133
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (39)

URL HTTP/1.1

IP

ASN

File type

Size