{"report_id":"d833ef81-9a4f-4385-95d2-095c5a34225f","version":6,"status":"done","tags":[],"date":"2024-11-13T22:18:45Z","url":{"schema":"https","addr":"koveburg.de/","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"172.67.217.225","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"koveburg.de/login","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"title":"Login"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-01-22T22:18:45Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"i.pinimg.com","ip":{"addr":"23.36.77.194","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2010-05-29","domain_rank":689,"first_seen":"2015-10-15T02:21:29Z","last_seen":"2024-11-13T17:14:17.952468Z","alert_count":0,"request_count":1,"received_data":53627,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn3.emoji.gg","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-07-02","domain_rank":0,"first_seen":"2022-05-18T12:12:33Z","last_seen":"2024-11-10T23:05:19.441458Z","alert_count":0,"request_count":1,"received_data":67430,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"koveburg.de","ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2024-11-13T22:18:42.320017Z","last_seen":"2024-11-13T22:18:42.320017Z","alert_count":0,"request_count":4,"received_data":17767,"sent_data":2114,"comment":"","tags":null,"fingerprints":null},{"fqdn":"i.imgur.com","ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2009-01-09","domain_rank":5110,"first_seen":"2012-05-21T10:09:36Z","last_seen":"2024-11-13T12:10:41.088811Z","alert_count":0,"request_count":1,"received_data":233979,"sent_data":414,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"Mnemonic Secure DNS","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"koveburg.de/login","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"6611f97e566938b01adf713d26e6d2e4353330d5b00091453e0c8d54d7a0e8e93b7f80","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T06:11:46.020773Z","times_seen":13409077,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"koveburg.de/captcha","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://koveburg.de/login","date":"2024-11-13T22:18:21.473Z","timestamp":1731536301473,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"koveburg.de","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 Nov 2024 16:45:48 GMT","end":"Tue, 11 Feb 2025 16:45:47 GMT"},"fingerprint":{"sha1":"42:B7:B2:4B:FA:57:86:96:5F:2A:FF:8F:F1:76:C0:6B:A5:32:73:2C","sha256":"E1:BC:BB:6C:8E:EB:07:4D:AA:77:FA:E0:0A:88:11:49:9E:72:67:21:39:35:AB:50:80:45:E6:0C:13:FA:AE:34"}}},"request":{"raw":"GET /captcha HTTP/1.1\r\nHost: koveburg.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://koveburg.de/login\r\nCookie: connect.sid=s%3Aj6W8KF7utp0K1B8QpACx9_B1nCBGH5Y3.SYxQR2uPuX%2FPBOJDCcwzmANbOGaKEt%2F1G%2Bgx2%2FAEC6M\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\ncontent-type: image/png\r\ncontent-length: 1743\r\nx-powered-by: Express\r\netag: W/\"6cf-Q0IftdssMQOU+agHBn8rQuq3BbY\"\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=gP%2B61FIRgp1iYZl1YWc%2BcaOYtAekYbTAzrR1VQvTgOeNcyS37F1wFdsFsAyd1x0yDqZzTSVDFU8Lbgwp%2BvipeD4qNWR1zz0ero9IMiKEvcuSmij5QSPp%2Fsn6yEPRwA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8e22231c2a6fb505-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=19728\u0026sent=12\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=4074\u0026recv_bytes=1522\u0026delivery_rate=33816\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=e16086997739b694\u0026ts=463\u0026x=1\", cfHdrFlush;dur=0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1743,"size_decoded":1743,"mime_type":"image/png","magic":"PNG image data, 200 x 60, 8-bit/color RGBA, non-interlaced","md5":"4870fcaa288eeefea321d8660046fb33","sha1":"43421fb5db2c310394f9a807067f2b42eab705b6","sha256":"b4b030896398f68e674548930f6103121965512ba41e973a9f133ae072f86cf0","sha512":"af0614e1c193c8ff7a789406b341aadd573bb559008f5917eafb5da0d7eac4ebbe504b5f031ab2c6bd731754295109c2ddcc5eb27721b0e75bcdef13d8a24bda","ssdeep":"","tlshash":"f031c7db895badb2cf1b01765ff5005642e6333a01a95e7848533479c253472d6e83c3","first_seen":"2024-11-13T22:18:45.33806Z","last_seen":"2025-05-25T22:10:02.713908Z","times_seen":2,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/MhWCMmY.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://koveburg.de/login","date":"2024-11-13T22:18:21.469Z","timestamp":1731536301469,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 15 Feb 2024 00:00:00 GMT","end":"Fri, 14 Feb 2025 23:59:59 GMT"},"fingerprint":{"sha1":"39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42","sha256":"85:98:1C:9A:F2:7D:E8:EA:B9:06:C4:4F:00:49:71:E0:46:91:AB:6B:DD:CB:AC:4C:3C:B1:59:F7:8C:3B:2B:C4"}}},"request":{"raw":"GET /MhWCMmY.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://koveburg.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nlast-modified: Wed, 13 Nov 2024 07:21:25 GMT\r\netag: \"aabf20fe02760cfe1d1a9cb11b2186db\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD12-P2\r\nx-amz-cf-id: wcafIbrba_aQ1Y1cF3Hu9rgYOz1Rm4MDBy_WoOwNM44IGp46vpuo9g==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\nage: 53817\r\nx-served-by: cache-iad-kiad7000108-IAD, cache-hel1410032-HEL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 55, 1\r\nx-timer: S1731536302.608382,VS0,VE1\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 233227\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":233227,"size_decoded":233227,"mime_type":"image/png","magic":"PNG image data, 473 x 391, 8-bit/color RGB, non-interlaced","md5":"aabf20fe02760cfe1d1a9cb11b2186db","sha1":"6ce20ce27f1ce813c4850e04aa51781838c46e23","sha256":"77312d11637a4d5ae0030c07afc9d813acbb7250865a46845ec611eea79bc80f","sha512":"8be23e08ff2df4aadc3b1a233d17dac889500a44159004453c3b7666c09c70aeb7d52c2a6785d97f21a381e0298d8e6204265c2f26821957c99db527230e0406","ssdeep":"6144:D46CZ8x7Otnk9LZTWN0oyW3BGdHHAMJQ2rIFCCCB8:DUmVQnkmOrSErprIFC8","tlshash":"4d342358d3146d77b3add6a3b2e5ac8365abec817dd61064d3036380fe6321b44d9f18","first_seen":"2024-11-13T22:18:45.340384Z","last_seen":"2024-11-19T01:29:35.602099Z","times_seen":2,"resource_available":false,"data":null}},"time_used":348,"timings":{"blocked":117,"dns":0,"connect":26,"send":0,"wait":28,"receive":78,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.pinimg.com/736x/18/fd/9d/18fd9d674a17ad6dcf89f267b507b754.jpg","fqdn":"i.pinimg.com","domain":"pinimg.com","tld":"com"},"ip":{"addr":"23.36.77.194","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://koveburg.de/login","date":"2024-11-13T22:18:21.688Z","timestamp":1731536301688,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"i2.pinimg.com","organization":"Pinterest, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 23 Apr 2024 00:00:00 GMT","end":"Thu, 15 May 2025 23:59:59 GMT"},"fingerprint":{"sha1":"1C:5F:46:F7:91:91:1C:69:DD:8D:F6:5A:F9:26:61:14:36:A4:0A:E4","sha256":"9B:05:E7:82:65:B7:67:94:1E:AB:B6:4B:DC:3C:E3:D9:96:E8:8B:B4:24:81:26:DB:8A:C4:94:E0:0D:E8:66:14"}}},"request":{"raw":"GET /736x/18/fd/9d/18fd9d674a17ad6dcf89f267b507b754.jpg HTTP/1.1\r\nHost: i.pinimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://koveburg.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\netag: \"c82f81b807e4ba93161d3e10a62ccc8a\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\ncontent-type: image/jpeg\r\ncontent-length: 53263\r\nx-pinterest-cache-status-v2: Hit\r\nalt-svc: h3=\":443\"; ma=600\r\nakamai-grn: 0.e54d2417.1731536301.1b3f1fc\r\nvary: Origin\r\ncache-control: immutable, max-age=31536000\r\nx-cdn: akamai\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53263,"size_decoded":53263,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 736x831, components 3","md5":"c82f81b807e4ba93161d3e10a62ccc8a","sha1":"06071003f37efef22c31c68b4749d67e2b7fb286","sha256":"b675feaef0ef1c922d5f5218a8311f531780f90be9e82e26dfabafba1ea2d9f2","sha512":"66b9af0298f40bbe61055a7ddd1b57577046c947604195b14812aa279c63a1b3677d15184039e25290fda8bcda28d1e08731b52b67f9331a14715631242bc99a","ssdeep":"768:1CnYaXHu2OwipuWaDaSoUvZHGllQp3Nmc3q5P/6p2osjJ3BPy9zBF8pE+16ZL5ac:1IXuV7G0Qmc6ByEosHQBFIi7pd","tlshash":"29330292eac29a2dccebbbbb04d5371232d2d0421bd2830f5de25d55658f8cf19d62b1","first_seen":"2024-11-13T22:18:45.341995Z","last_seen":"2024-11-30T20:22:00.436651Z","times_seen":6,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":19,"dns":2,"connect":1,"send":0,"wait":6,"receive":19,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn3.emoji.gg/emojis/2752-hd-hamburguer.png","fqdn":"cdn3.emoji.gg","domain":"emoji.gg","tld":"gg"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://koveburg.de/login","date":"2024-11-13T22:18:21.690Z","timestamp":1731536301690,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn3.emoji.gg","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 Nov 2024 02:28:27 GMT","end":"Thu, 30 Jan 2025 02:28:26 GMT"},"fingerprint":{"sha1":"2C:CF:50:9D:47:DC:9A:5C:75:DE:F6:80:20:64:04:B3:0E:B8:21:03","sha256":"7C:8E:5D:CF:EA:0F:63:54:79:A7:39:4B:BE:AE:62:9D:85:D1:86:6E:A1:70:DB:CB:8C:A0:8A:31:37:C7:EE:92"}}},"request":{"raw":"GET /emojis/2752-hd-hamburguer.png HTTP/1.1\r\nHost: cdn3.emoji.gg\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://koveburg.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\ncontent-type: image/png\r\ncontent-length: 66187\r\nlast-modified: Tue, 17 May 2022 21:15:28 GMT\r\nx-rgw-object-type: Normal\r\netag: \"78b54df01ea8f4dc61e69ced84f16e4d\"\r\nx-amz-request-id: tx00000ba6153eb2e1690f1-00672ee238-113fdfe21-fra1b\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nx-do-cdn-uuid: ed216277-2958-478c-82ba-7db8c1ae59b1\r\ncache-control: max-age=2678400\r\nx-envoy-upstream-healthchecked-cluster: \r\ncf-cache-status: HIT\r\nage: 3183\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=1Qwo%2FtjIppQ0LAyCA%2Fqu1aU7XtAAnuNUoLyf4%2BIlOV6FWAbNvrZS41BLJ1qIBKzbP6MG7AZCZ4C3hbSyVXC4UIkg2LGtnyDyKaIHnO8m%2BhRf99WtVQ5pGHSlMAHGh16g\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8e22231df865b503-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=16507\u0026sent=5\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=2837\u0026recv_bytes=1179\u0026delivery_rate=175472\u0026cwnd=251\u0026unsent_bytes=0\u0026cid=df19b708bc7e20dd\u0026ts=46\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":66187,"size_decoded":66187,"mime_type":"image/png","magic":"PNG image data, 379 x 318, 8-bit/color RGBA, non-interlaced","md5":"78b54df01ea8f4dc61e69ced84f16e4d","sha1":"24d7c27f541ed4f8d2066d47675494ce3b32118a","sha256":"57478ff77e53960903d1abeac52ba3bdc97163780a6cf93aade863eee5fc6684","sha512":"f7812ec3fac9d0d89947777ee9f1c1d812461050bf6265f833e80c89bdfa1ae380c97c7c79aad6db0d06dc837de926a18f64281dd20808493dc8fc26a934c4a4","ssdeep":"1536:la42LTnNgM4FghRuaHoIcG9resZWP6GKUxSVN58KZPl7By:la42/NgfF0u6+Zx0nZ9By","tlshash":"0c5301cdd15dbab76268b0f10398cf94dea83a57951e7d2d0c8832a24ad86db9db1103","first_seen":"2024-11-13T22:18:45.351121Z","last_seen":"2024-11-30T20:22:00.434986Z","times_seen":6,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":3,"dns":0,"connect":17,"send":0,"wait":27,"receive":18,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"koveburg.de/style.css","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://koveburg.de/login","date":"2024-11-13T22:18:21.466Z","timestamp":1731536301466,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"koveburg.de","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 Nov 2024 16:45:48 GMT","end":"Tue, 11 Feb 2025 16:45:47 GMT"},"fingerprint":{"sha1":"42:B7:B2:4B:FA:57:86:96:5F:2A:FF:8F:F1:76:C0:6B:A5:32:73:2C","sha256":"E1:BC:BB:6C:8E:EB:07:4D:AA:77:FA:E0:0A:88:11:49:9E:72:67:21:39:35:AB:50:80:45:E6:0C:13:FA:AE:34"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: koveburg.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://koveburg.de/login\r\nCookie: connect.sid=s%3Aj6W8KF7utp0K1B8QpACx9_B1nCBGH5Y3.SYxQR2uPuX%2FPBOJDCcwzmANbOGaKEt%2F1G%2Bgx2%2FAEC6M\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nx-powered-by: Express\r\ncache-control: public, max-age=14400\r\nlast-modified: Wed, 13 Nov 2024 07:14:39 GMT\r\netag: W/\"1202-193245fcf22\"\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=tRilIfFAvOAugnG1lMQvPnrDsScbdBkcsTTZ63zdQLibyf11GIaLLPu%2BOIvzAyI960y%2BO7BhBlVyP6joB2Dhy85wcm88A8zAsUYy5bNBEApuSvpNKb8GpTbwPTKZ7Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8e22231c2a6db505-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=19728\u0026sent=15\u0026recv=7\u0026lost=0\u0026retrans=0\u0026sent_bytes=6534\u0026recv_bytes=1522\u0026delivery_rate=33816\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=e16086997739b694\u0026ts=468\u0026x=1\", cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4610,"size_decoded":4610,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (5134), with no line terminators","md5":"c0d99cc88f859a7beb47adea9b4842e7","sha1":"e68436788e386c8ef050f2f61b452b9821770595","sha256":"249cae3c0b3eab4c6e1122038cd9dd749de31f2ae90fc6b2ed1b415c6c7246e8","sha512":"28e42befaefd786b415c134665ce9bf50901590efbc12e321a63f289e89cd0c5debf7db75f88ab26ccc215dc41e6590d92de73134c200bd7db3cd880d9c0f22a","ssdeep":"48:U7TUggFUgUpUGKNz34gzggpVKgLv0/mIP1umggHVKNrQ29AaBg59bKj3JTbp:U7TYcbW5cgT0/mI0mCNrQ29AaO+f","tlshash":"f3b117195e0f3279bd92947c3cf286c1121fb81b92458bbf3e8ca194c3db1d89464f65","first_seen":"2024-11-13T22:18:45.353737Z","last_seen":"2024-11-13T22:18:45.353737Z","times_seen":1,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"koveburg.de/","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-11-13T22:18:20.803Z","timestamp":1731536300803,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"koveburg.de","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 Nov 2024 16:45:48 GMT","end":"Tue, 11 Feb 2025 16:45:47 GMT"},"fingerprint":{"sha1":"42:B7:B2:4B:FA:57:86:96:5F:2A:FF:8F:F1:76:C0:6B:A5:32:73:2C","sha256":"E1:BC:BB:6C:8E:EB:07:4D:AA:77:FA:E0:0A:88:11:49:9E:72:67:21:39:35:AB:50:80:45:E6:0C:13:FA:AE:34"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: koveburg.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\ncontent-type: text/html; charset=utf-8\r\nx-powered-by: Express\r\nlocation: /login\r\nvary: Accept\r\nset-cookie: connect.sid=s%3Aj6W8KF7utp0K1B8QpACx9_B1nCBGH5Y3.SYxQR2uPuX%2FPBOJDCcwzmANbOGaKEt%2F1G%2Bgx2%2FAEC6M; Path=/; HttpOnly\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Rsphlg3HJWWThGh6s%2BE4x3dyPTJ4ZQ94UdUfHqSm2TKm6Bg8njX%2FPg%2Fupcp0SG9WZ0pQNt5wVd%2BaHNYhZABnnxb6e%2FFDxMLjFQRP%2FGlr0PLkry68uk3sL6FxXNRIIA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8e2223188fa61c06-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=22018\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3273\u0026recv_bytes=1239\u0026delivery_rate=262826\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=b70d325ce713d0d5\u0026ts=220\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":3993,"size_decoded":3993,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T06:11:46.020773Z","times_seen":13409077,"resource_available":true,"data":null}},"time_used":339,"timings":{"blocked":80,"dns":0,"connect":17,"send":0,"wait":179,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"koveburg.de/login","fqdn":"koveburg.de","domain":"koveburg.de","tld":"de"},"ip":{"addr":"104.21.78.77","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-11-13T22:18:21.074Z","timestamp":1731536301074,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"koveburg.de","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 13 Nov 2024 16:45:48 GMT","end":"Tue, 11 Feb 2025 16:45:47 GMT"},"fingerprint":{"sha1":"42:B7:B2:4B:FA:57:86:96:5F:2A:FF:8F:F1:76:C0:6B:A5:32:73:2C","sha256":"E1:BC:BB:6C:8E:EB:07:4D:AA:77:FA:E0:0A:88:11:49:9E:72:67:21:39:35:AB:50:80:45:E6:0C:13:FA:AE:34"}}},"request":{"raw":"GET /login HTTP/1.1\r\nHost: koveburg.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: connect.sid=s%3Aj6W8KF7utp0K1B8QpACx9_B1nCBGH5Y3.SYxQR2uPuX%2FPBOJDCcwzmANbOGaKEt%2F1G%2Bgx2%2FAEC6M\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 13 Nov 2024 22:18:21 GMT\r\ncontent-type: text/html; charset=utf-8\r\nx-powered-by: Express\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=GBhMcm8h4HrOFOObQqdwjqVILlkvPF4QUqtHN41S%2FA6UM4g2kiKbFhX6OaDFRzYBfzEkdw%2FjRJP%2BM%2FnN62ZFi%2FvQM32VYwUF8M8T2WCScNYy1lR3PlnrfNWivEeBeQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8e222319b9471c06-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=20161\u0026sent=11\u0026recv=15\u0026lost=0\u0026retrans=0\u0026sent_bytes=4070\u0026recv_bytes=1390\u0026delivery_rate=262826\u0026cwnd=257\u0026unsent_bytes=0\u0026cid=b70d325ce713d0d5\u0026ts=349\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3993,"size_decoded":3993,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4294), with no line terminators","md5":"f8b86a0b5813df0f95003ad1e4f6f12b","sha1":"817e3b6cba3e82086f835c6af81774cff4651650","sha256":"57cbd7cb3bd3da5069c0edd572378dd1099460e6247e2128b8358b7076194afc","sha512":"4c7cb51a95292d0fc1bf0ee2e8f258a86f1ad8a1c37b909543f67b3971f76b19e98210ec5e85367340797fe91692528446c6ff3cdf64bd5f2cf8fc9b015f9659","ssdeep":"48:ce1YNf63m4hGTT5+Q2wImu5oPjpoDzmQibTgkVjzeSvNWv:esO+Q2wDoPmxcRSWv","tlshash":"d291326e8859b4752b82807c2561ba7c7e3bf041ad3649497bac4ee8c3d2d8cc937f50","first_seen":"2024-11-13T22:18:45.356042Z","last_seen":"2024-11-13T22:18:45.356042Z","times_seen":1,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}