Report - exploreelevate.marriott.com

Report Overview

Submitted URL
exploreelevate.marriott.com
IP
141.193.213.11
ASN
#209242 Cloudflare London, LLC
Submitted
2024-03-28 21:30:53
Access
public
Website Title
Log in to access this Foleon Doc
Final URL
marriott.foleon.com/elevate/languages/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
exploreelevate.marriott.com	unknown	unknown	No data	No data	482 B	735 B	141.193.213.10
marriott.foleon.com	unknown	unknown	No data	No data	1.5 kB	4.7 kB	34.111.64.232
use.typekit.net	494	2010-08-02	2012-07-05	2024-03-27	419 B	1.6 kB	184.51.252.204
p.typekit.net	620	2010-08-02	2012-05-23	2024-03-27	527 B	338 B	23.36.76.96

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (6)

	URL	IP	Response	Size
	exploreelevate.marriott.com/	141.193.213.10	301 Moved Permanently	162 B
URL User Request GET HTTP/2 exploreelevate.marriott.com/ IP 141.193.213.10:443 ASN #209242 Cloudflare London, LLC Certificate IssuerLet's Encrypt Subjectexploreelevate.marriott.com Fingerprint4C:5C:9A:B3:11:78:71:F1:B1:C8:CB:6B:8A:70:6A:24:EC:93:E5:DA ValidityThu, 28 Mar 2024 15:16:57 GMT - Wed, 26 Jun 2024 15:16:56 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET / HTTP/1.1 Host: exploreelevate.marriott.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Thu, 28 Mar 2024 21:30:28 GMT content-type: text/html content-length: 162 location: https://marriott.foleon.com/elevate/ cf-cache-status: DYNAMIC set-cookie: __cf_bm=YcxVF8IEPcUBsM.IqVNdYYXd0KzTPpI3L5YhnFmSHSo-1711661428-1.0.1.1-V2zg4mN3h02bqaNlx5vJydmAmQ2bSMDFE0Ws4X60VjrVrHc47BdZiZnNWYtBLkQz9u0bcH8eCZB8t0tqX4xXuw; path=/; expires=Thu, 28-Mar-24 22:00:28 GMT; domain=.exploreelevate.marriott.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 86bab8b6dde75695-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	marriott.foleon.com/elevate/	34.111.64.232	302 Found	82 B
URL User Request GET HTTP/2 marriott.foleon.com/elevate/ IP 34.111.64.232:443 ASN #396982 GOOGLE-CLOUD-PLATFORM Certificate IssuerLet's Encrypt Subject.foleon.com Fingerprint60:65:97:E5:B5:3C:5E:F6:F7:68:20:C0:4A:C5:EC:8F:92:E5:B0:15 ValidityThu, 21 Mar 2024 06:39:09 GMT - Wed, 19 Jun 2024 06:39:08 GMT File type HTML document, ASCII text, with no line terminators Size 82 B (82 bytes) Hash f16862481b1f8632c8eb1c6e3ad6123f 2b2a8563cfcf1694fd0bfa90f083130641b6eea9 566c44be387c03da1177ae4fc09c1da368026c6ad59c3c40c457fd9769852607 HTTP Headers `GET /elevate/ HTTP/1.1 Host: marriott.foleon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found location: /elevate/languages/ vary: Accept content-type: text/html; charset=utf-8 content-length: 82 date: Thu, 28 Mar 2024 21:30:28 GMT via: 1.1 google strict-transport-security: max-age=31536000; includeSubDomains; preload alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	marriott.foleon.com/elevate/languages/	34.111.64.232	200 OK	3.8 kB
URL User Request GET HTTP/2 marriott.foleon.com/elevate/languages/ IP 34.111.64.232:443 ASN #396982 GOOGLE-CLOUD-PLATFORM Certificate IssuerLet's Encrypt Subject.foleon.com Fingerprint60:65:97:E5:B5:3C:5E:F6:F7:68:20:C0:4A:C5:EC:8F:92:E5:B0:15 ValidityThu, 21 Mar 2024 06:39:09 GMT - Wed, 19 Jun 2024 06:39:08 GMT File type HTML document, ASCII text Size 3.8 kB (3773 bytes) Hash 8bc2ab44b0ba1f54a84560efa647b136 b56e80957dd8294fbc544bd88853d16a52db351f 1f345224d315742f3aa950ce2c39cb2d18ffc64bd47f019ef1dd6a2beed0b80d HTTP Headers `GET /elevate/languages/ HTTP/1.1 Host: marriott.foleon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/html; charset=utf-8 content-length: 3773 etag: W/"ebd-tW6AlX3YKU+8VEvYiFPRalLbNR8" date: Thu, 28 Mar 2024 21:30:29 GMT via: 1.1 google strict-transport-security: max-age=31536000; includeSubDomains; preload alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	marriott.foleon.com/favicon.ico	34.111.64.232	404 Not Found	0 B
URL GET HTTP/3 marriott.foleon.com/favicon.ico IP 34.111.64.232:443 ASN #396982 GOOGLE-CLOUD-PLATFORM Requested by https://marriott.foleon.com/elevate/languages/ Certificate IssuerLet's Encrypt Subject.foleon.com Fingerprint60:65:97:E5:B5:3C:5E:F6:F7:68:20:C0:4A:C5:EC:8F:92:E5:B0:15 ValidityThu, 21 Mar 2024 06:39:09 GMT - Wed, 19 Jun 2024 06:39:08 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: marriott.foleon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://marriott.foleon.com/elevate/languages/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 404 Not Found content-length: 0 via: 1.1 google date: Thu, 28 Mar 2024 20:05:35 GMT age: 5094 strict-transport-security: max-age=31536000; includeSubDomains; preload alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	use.typekit.net/ikm2lmn.css	184.51.252.204	200 OK	1.2 kB
URL GET HTTP/2 use.typekit.net/ikm2lmn.css IP 184.51.252.204:443 ASN #20940 Akamai International B.V. Requested by https://marriott.foleon.com/elevate/languages/ Certificate IssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (516) Size 1.2 kB (1209 bytes) Hash e467e586e2c7fd9f8b19b9d1da90c38e eaf338f97ea2b15c35e31b356c127902661c53da 4175468cfb7a714aad09182d3029a93bbf73871ae52b0257e4310d9e764eb575 HTTP Headers `GET /ikm2lmn.css HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://marriott.foleon.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx content-type: text/css;charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; cache-control: private, max-age=600, stale-while-revalidate=604800 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin content-encoding: gzip content-length: 1209 date: Thu, 28 Mar 2024 21:30:29 GMT X-Firefox-Spdy: h2`

	p.typekit.net/p.css?s=1&k=ikm2lmn&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137&a=20107026&app=typekit&e=css	23.36.76.96	200 OK	5 B
URL GET HTTP/2 p.typekit.net/p.css?s=1&k=ikm2lmn&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137&a=20107026&app=typekit&e=css IP 23.36.76.96:443 ASN #20940 Akamai International B.V. Requested by https://marriott.foleon.com/elevate/languages/ Certificate IssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers GET /p.css?s=1&k=ikm2lmn&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137&a=20107026&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Tue, 07 Mar 2023 19:56:00 GMT etag: "640796d0-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Thu, 28 Mar 2024 21:30:29 GMT X-Firefox-Spdy: h2`