r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3747
Expires: Fri, 09 Dec 2022 01:25:47 GMT
Date: Fri, 09 Dec 2022 00:23:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5673
Expires: Fri, 09 Dec 2022 01:57:53 GMT
Date: Fri, 09 Dec 2022 00:23:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17504
Expires: Fri, 09 Dec 2022 05:15:04 GMT
Date: Fri, 09 Dec 2022 00:23:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 00:08:16 GMT
content-type: application/json
age: 904
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bGPOgZpVenks0mA/61UXDVAUKaID4eOX1+H+9wiIJZl66rTmVcUhoTZ6yR4Lkrfb+8m8pm4WXJ4=
x-amz-request-id: QF64W7Q5KV8SRVEQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 23:50:00 GMT
age: 2000
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
arbeitsvertrag-passau.de/
301 Moved Permanently 0 B URL HTTP/1.1 arbeitsvertrag-passau.de/
IP
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 00:23:19 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://arbeitsvertrag-passau.de/
X-Powered-By: PHP/7.4.16, PleskLin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 00:23:20 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c0b75aa104d327d59f6e1061099ec67e
36761b26031ce13b525f5c3c0cf477350b29e5bd
4cae9feb8fd02a62ae9c2b047ef22f87f2ff0596f73417c4ec05f97927e02092
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4CAE9FEB8FD02A62AE9C2B047EF22F87F2FF0596F73417C4EC05F97927E02092"
Last-Modified: Fri, 09 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21530
Expires: Fri, 09 Dec 2022 06:22:10 GMT
Date: Fri, 09 Dec 2022 00:23:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 00:07:59 GMT
age: 921
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
arbeitsvertrag-passau.de/
200 OK 11 kB URL HTTP/1.1 arbeitsvertrag-passau.de/
IP
ASN #20773 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash f3db073f9c4e9bdc199448cb68edc31a
f89e43cef380b2e3059792d366332ccb84506cec
53df1822c4524c4bccd9f2b8626aebc68f358be4c7737a7379e3f42c09bbc9f5
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:20 GMT
Server: Apache
Link: <https://arbeitsvertrag-passau.de/wp-json/>; rel="https://api.w.org/", <https://arbeitsvertrag-passau.de/wp-json/wp/v2/pages/496>; rel="alternate"; type="application/json"
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.4.16, PleskLin
Content-Length: 10893
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4259
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:23:20 GMT
Last-Modified: Thu, 08 Dec 2022 23:12:21 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
arbeitsvertrag-passau.de/wp-includes/css/dist/block-library/style.min.css
200 OK 12 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-includes/css/dist/block-library/style.min.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:20 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 05:39:45 GMT
ETag: "172a9-5ed8fe6705c8d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12518
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-includes/css/classic-themes.min.css
200 OK 189 B URL HTTP/1.1 arbeitsvertrag-passau.de/wp-includes/css/classic-themes.min.css
IP
ASN #20773 Host Europe GmbH
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 05:20:17 GMT
ETag: "d9-5ec75ff060d73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/uploads/sgf-css/font-0780f792a958bc1bd6d33531ea980064.css
200 OK 556 B URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/sgf-css/font-0780f792a958bc1bd6d33531ea980064.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (311)
Hash 5483f555f362ddf7a82ba55024c74a34
4edfeaf6bb91f5968534a05d7badd2d97feefb36
5d82029c15a9a0cce09bea51578fd8959b8d44abbba65797cf44c0c89287ee6c
GET /wp-content/uploads/sgf-css/font-0780f792a958bc1bd6d33531ea980064.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 07:27:11 GMT
ETag: "ec7-5aff6030491c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 556
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/css/js_composer.min.css
200 OK 46 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/css/js_composer.min.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (65358)
Hash 2fe906250b403a8535d316cdf1e8a808
7b84d27dd294fe145beec5801fc2d8d5a00d611b
655f96cc6f8ea662c046fd64382639c7a9b5c9a936645beb200653b4880e51e3
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:20 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 06:34:15 GMT
ETag: "76828-5aff545b6a7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 45790
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/bootstrap.css
200 OK 11 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/bootstrap.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (540)
Hash 4ad17994510911e793504035bb81b066
ae5a81faa6fc73d0801a4fbbc9fa34651c5997e2
8bae0184566c3884e50612fee5990d1c1c8aef8edfac7b3ce5d1ea994ea6760c
GET /wp-content/themes/stack/style/css/bootstrap.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "faa8-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10829
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/icons.css
200 OK 2.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/icons.css
IP
ASN #20773 Host Europe GmbH
Hash 462bbef0fe24107ea591e86350340113
dd6c283a132ccc6235afdf17dedeaca707a1848a
27540fad5affabf1568bcc71cc3ddcd521b67b3179a16f245c63eecbdb769cf1
GET /wp-content/themes/stack/style/css/icons.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "304d-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2743
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/plugins.css
200 OK 2.5 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/plugins.css
IP
ASN #20773 Host Europe GmbH
Hash 37d1dd1c47e4de451f698882d767e012
d9cf78b62c55168b95602b9fa4016016ec498d65
c6b20bfe0839ebffe594154f4d1f6657c138dc6802f655be4e528a5fc7a73fc6
GET /wp-content/themes/stack/style/css/plugins.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "2db6-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2450
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack-child/style.css
200 OK 206 B URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack-child/style.css
IP
ASN #20773 Host Europe GmbH
File type HTML document, ASCII text
Hash 8bc42888d74c8d47dbb4fc3d1126f8b4
7f2dfa24a73ab81c2d4cd708854530416bae9d90
4bc508ca067043fd379a682a129a3071d9180253487d81a513c6b030d7ef83c4
GET /wp-content/themes/stack-child/style.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 25 Jun 2018 11:26:57 GMT
ETag: "130-56f75a8c6a240-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 206
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/iconsmind.css
200 OK 16 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/iconsmind.css
IP
ASN #20773 Host Europe GmbH
Hash 8852c5326d2ea6bc4c3fd817e91694e0
6f4d301f009f6e1d9dd2982e7679cddb3283b287
abd6eb10aed2af50f8c4e3f6e89bdacd243fbce4912bb4b6b9edf1d558e942e6
GET /wp-content/themes/stack/style/css/iconsmind.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "178bf-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 15685
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/css/cookieconsent.min.css
200 OK 3.4 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/css/cookieconsent.min.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (20893), with no line terminators
Hash 79ba4275cbca4b0f018cccba26b2e9d5
bd7d545ece1dc3e0135abe40401910d96ce76901
df87d0396aba033f8f72af09a06177d0547528cdd803f7db410da80934b17d06
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieconsent.min.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 08:01:24 GMT
ETag: "519d-5d38f4b8609f3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3429
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 4.2 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-includes/js/jquery/jquery-migrate.min.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 06:34:18 GMT
ETag: "2bd8-5b6023fae338c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/uploads/wp-less/stack/style/css/theme-940565e41a.css
200 OK 29 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/wp-less/stack/style/css/theme-940565e41a.css
IP
ASN #20773 Host Europe GmbH
File type assembler source text\012- assembler source, ASCII text
Hash f03cd382f82d6d4f4f3186c827fad793
aa3d4ecb5a30146aeb64435eebda7374fb523798
6e5a7ae4b0b33ad0f10ee3388dafda6fc007c7b8efcfb8dc3595fdb9769478ed
GET /wp-content/uploads/wp-less/stack/style/css/theme-940565e41a.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Fri, 23 Oct 2020 12:48:33 GMT
ETag: "2e93f-5b255ff8e0957-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 29328
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css
200 OK 3.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (51719)
Hash b56aabb4f35984f3e74659f7b23254bf
9e12c8b4c80428a847b50e922b1a8a38d807c23c
825101fe8abc67771f316bff138dbd33445065033cc7efb4b103a26b100bb464
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 06:34:16 GMT
ETag: "caa8-5aff545c5ea00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3653
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/parallax.js
200 OK 1.5 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/parallax.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4874), with no line terminators
Hash 520e09398f3ede403b5a6a9a05a2234d
05dbd4a9c15253b916bdfa01364963788de3acc4
bcfcbba2ad2ef54620032c5dade3bb96efddba465f28678c1e5c8ce94519bd99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/parallax.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "130a-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1463
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/isotope.js
200 OK 9.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/isotope.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (32015)
Hash f61c932695864f8884ec68ce0cc3b239
efc5aa8d31bd75368ee3a5348b5edd3aa52a10c6
eadfadadc658dfb0c12cda5ef22bb08406ce43e4dfa1d6342dd8a203fb72f005
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/isotope.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "878d-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 9679
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/final-countdown.js
200 OK 2.4 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/final-countdown.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4136)
Hash eed4917979016002ba993afa96b41e7d
a2f986eacbd5b08038e0deae2596d833c385e0bd
b2eda529632606d3c4858fa6dbf634326d555b8e7e963189c87f7bbdb59f2c50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/final-countdown.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "14dc-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2374
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/smooth-scroll.js
200 OK 2.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/smooth-scroll.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (4887)
Hash e5041ff95fd36697b22ff5f96325aaed
92180f642e989e0f93f73d4c0b7c67bba41e63d1
7eaa32de64b7e9a29947e6cbaee42684f27eeb15691aa020560df103e543df72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/smooth-scroll.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "1777-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2748
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/flickity.js
200 OK 14 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/flickity.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (32104)
Hash 8712514182938ac795d9c82b361d2d8a
c7d885508f97af06d6613ca5bffd25db15018ef2
a5e8ac03f7fa63b64122af59a4c09b2f78baddc64a44c9ec70cf633a622caec3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/flickity.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "d351-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13626
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/granim.js
200 OK 2.8 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/granim.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (10573)
Hash d96543f753a208e1510ff75f9291990c
0e6bb2860b1075eacd5376dfefeed4587f1dbc75
6c5e220c03cc8ef0e0bd9d356b04623df7475ab216e3c86d0ba508323affb374
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/granim.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "298b-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2836
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/spectragram.js
200 OK 2.0 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/spectragram.js
IP
ASN #20773 Host Europe GmbH
Hash 34557c83bd774003deb6b04fc44f2fb4
779933192880fcd9b7e293208e043df7c2e9cc8b
5bf1175de9e616b236d99009a2b1b1956012e61863a52368c07a32134e3d7897
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/spectragram.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "1610-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1999
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: McPi2O9XN3gGr+1xxEiUlg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PqoVnGK7UkI3XSe8qepeY/sIRAs=
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/twitter-post-fetcher.js
200 OK 4.6 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/twitter-post-fetcher.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3949)
Hash a790709e3585cded568e9423fa7daa19
da4b7e012d5a47c1476f4ba2784009f3d1f8e494
e4cefb72a6790962739100f8285caf010c09e12ec51a78eeceadde644b5b519b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/twitter-post-fetcher.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "3c7e-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4576
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/steps.js
200 OK 4.9 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/steps.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (13686)
Hash 2e9df8bf062ee6905743501faf826510
2c8c6ebc9e266ff8e860b68eb632d048549cc6c6
1d6406588442538197b96404bec788639a5111c3e6c0432314e2b75714f415f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/steps.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "3621-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4916
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/easy-pie-chart.js
200 OK 1.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/easy-pie-chart.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (3765)
Hash 6e893ebdd72f6ae346f87562e0d0c19d
a8eb3bb547f208553dcb76090fff1e31febe1ff1
0877488a6c6ddeda0b3d3db97554e1844d193c07edde17e6dc3158c6d15c53f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/easy-pie-chart.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "f97-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1695
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/lightbox.js
200 OK 2.9 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/lightbox.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (9089)
Hash 3deb34367289b58ca3e6e7a466e3d7c4
399e3407d701b21996bf2d2f8b72aacc66ed38b4
fe8b90251d2fdbdc7c4b5990e2dbf7eb521c342a9031e5b5ebf8691d243dc277
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/lightbox.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "2477-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2871
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/ytplayer.js
200 OK 13 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/ytplayer.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (31991)
Hash c10c4d9d0d3e2ffa3f0d77aec77d99f2
9efe5d3554b5c7b86178e05ff2013b2c3ef89583
ff5b5dbaec7dabf4c040b1db5718f2a34abf9af85dadd3c5951542ef599407cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/ytplayer.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "cffc-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 13414
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/scripts_wp.js
200 OK 2.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/scripts_wp.js
IP
ASN #20773 Host Europe GmbH
File type HTML document, ASCII text
Hash 6d7b65590ba1f7a35b9425fa0bbd0fe6
0cb3bc809d50c8d5349d05281c83bcc95bce3799
fc2f1328cb45782dc148461f9ab2d31f7f9aea0c3e1570268b48942a6f043c2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/scripts_wp.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "2288-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2713
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/scripts.js
200 OK 17 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/js/scripts.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (947)
Hash 0b8f9ed1ab984ee2cdf9c27a1e4749a3
fc9f12b8c272c8b84f5cf6ec6962a174c8801397
a5ee35fe67ccf399230065f4071227f7d9b66aed4596d1b0ffe320f2267058c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/js/scripts.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "141a7-5afd212259880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 17043
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/js/complianz.min.js
200 OK 8.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/js/complianz.min.js
IP
ASN #20773 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (40731), with no line terminators
Hash c264aa5c9c25bdc7fb9def449ac41621
e580c7c07bb44f8509235ce3521fc2d269a9af9d
6e0abf0385fd62acd6061ae8ee7f5535a5fcaeb4dfdca7dc79ed5b3fee77079a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/complianz-gdpr/assets/js/complianz.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 08:01:24 GMT
ETag: "9f1b-5d38f4b856db3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8674
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/js/cookieconsent.min.js
200 OK 7.7 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/complianz-gdpr/assets/js/cookieconsent.min.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (25589), with no line terminators
Hash d8b07d182e3f5b53e02daa54f741249a
e8225751615d21e19df0057519e86a59f7873e8a
152fc5046d45bf6e0aa2a72428aaf1bc1169204e0754b02c35b6e8f37cf4d7f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/complianz-gdpr/assets/js/cookieconsent.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 08:01:24 GMT
ETag: "63f5-5d38f4b856db3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7678
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
200 OK 5.8 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
IP
ASN #20773 Host Europe GmbH
File type ASCII text, with very long lines (20478)
Hash 76106db76a3db58ce57b5171a2373225
613a99487a17c2490d6d34b347e2cf285d9c9528
e6e2274e7cf6fbfa9b50eb4f454325ad9f049a6c72d25f421481c9854fa2b545
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 06:34:15 GMT
ETag: "50d9-5aff545b6a7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5834
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js
200 OK 2.8 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js
IP
ASN #20773 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8853)
Hash bfbdca93ba95323d2d8a1420298f8429
5838f907c4898a5b092f4edd88190b2798f1a3c8
8a10fc2a3464e3c3a6d0015197004d70ebcb22c493bab35ac0bd23f5aa415722
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 06:34:16 GMT
ETag: "2415-5aff545c5ea00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2813
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
arbeitsvertrag-passau.de/wp-content/themes/stack/style.css
200 OK 9.3 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style.css
IP
ASN #20773 Host Europe GmbH
Hash 56649410d6f5b6c0eb2955e2f0ad6a19
c01caf1f5032597e4cbbd25c2231c3215729ddcb
72b2511c1579fd78e2496bff42795215893e83c5a29159274ed87d469504ffda
GET /wp-content/themes/stack/style.css HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/wp-content/themes/stack-child/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:25 GMT
ETag: "9177-5afd212165640-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 9311
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/logo-raschmidt.png
200 OK 14 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/logo-raschmidt.png
IP
ASN #20773 Host Europe GmbH
File type PNG image data, 124 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 092bf02281e733b284af47db4446d9ff
3ec5e459f95d1737217e7ee98555e1abed3a730f
53da3d901693d088942d0e439512978b93218f484fd9e8d8b4780b1bc7b67b7e
GET /wp-content/uploads/2020/09/logo-raschmidt.png HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:52:15 GMT
ETag: "3739-5afd251dd3dc0"
Accept-Ranges: bytes
Content-Length: 14137
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-1.jpg?id=3042
200 OK 152 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-1.jpg?id=3042
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=3264, bps=0, PhotometricIntepretation=RGB, description=Close up businessman signing contract making a deal., manufacturer=FUJIFILM, model=X-T1, orientation=upper-left, width=4896], progressive, precision 8, 1920x1266, components 3\012- data
Size 152 kB (151563 bytes)
Hash 2c663f0f48bcbce79e30fb579fa88554
707876eafa89449b1e7bc9f4a503be0d285bef72
39d91f4b842ea880ffed4cdd7f610cae93f6f1910debaf2d1377fce0b93625d5
GET /wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-1.jpg?id=3042 HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 15:20:54 GMT
ETag: "2500b-5affca1292180"
Accept-Ranges: bytes
Content-Length: 151563
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
arbeitsvertrag-passau.de/wp-content/themes/stack/style/fonts/socicon.ttf?a93r5t
200 OK 70 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/fonts/socicon.ttf?a93r5t
IP
ASN #20773 Host Europe GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Socicon \012- data
Hash 2ba13131bacda5cb7dd390f645f77c69
aae7d614381ba33c73f8822de3eb245f501a4481
3e3cb4d386fbbab1e03e3ec57c6719579372912c108d92ba177ac550659a4e85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/fonts/socicon.ttf?a93r5t HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "10f88-5afd212259880"
Accept-Ranges: bytes
Content-Length: 69512
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/font-sfnt
arbeitsvertrag-passau.de/wp-content/themes/stack/style/fonts/stack-interface.woff2?33839631
200 OK 4.3 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/themes/stack/style/fonts/stack-interface.woff2?33839631
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 4292, version 1.0\012- data
Hash ae072782b361d2afdbf43db08d3cfb73
f3db2e65b53d97491672f8631e21d6d05905cc88
31205df908aed9881f6d2d3ae7d38975252bf99e38268978b4236dc3c314754b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/stack/style/fonts/stack-interface.woff2?33839631 HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/wp-content/themes/stack/style/css/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:34:26 GMT
ETag: "10c4-5afd212259880"
Accept-Ranges: bytes
Content-Length: 4292
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c60cc6959d2ac574bcdd999a90ff5d3e
37b6b5e7d4f1fc26356f11b9efb25cd0c6b9e61d
b1b7cb2184459bd1d347c19d08acac583d98bac148060c593833f92e3c80d8c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B1B7CB2184459BD1D347C19D08ACAC583D98BAC148060C593833F92E3C80D8C1"
Last-Modified: Fri, 09 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Fri, 09 Dec 2022 06:22:56 GMT
Date: Fri, 09 Dec 2022 00:23:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c60cc6959d2ac574bcdd999a90ff5d3e
37b6b5e7d4f1fc26356f11b9efb25cd0c6b9e61d
b1b7cb2184459bd1d347c19d08acac583d98bac148060c593833f92e3c80d8c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B1B7CB2184459BD1D347C19D08ACAC583D98BAC148060C593833F92E3C80D8C1"
Last-Modified: Fri, 09 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Fri, 09 Dec 2022 06:22:56 GMT
Date: Fri, 09 Dec 2022 00:23:21 GMT
Connection: keep-alive
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhpKKSTjw.woff2
200 OK 8.8 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhpKKSTjw.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 8800, version 1.0\012- data
Hash 7631d9dc713cd0544300c5aef9394f54
31223824922afeffe5349644e3f5ab82ebec197d
fe32c9921874b35b87acb0a3b558784ca7b9fed91ed34c1d2a68b6566c9d09be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhpKKSTjw.woff2 HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:02 GMT
ETag: "2260-577c67b744280"
Accept-Ranges: bytes
Content-Length: 8800
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
arbeitsvertrag-passau.de/wp-includes/js/jquery/jquery.min.js
200 OK 8.9 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-includes/js/jquery/jquery.min.js
IP
ASN #20773 Host Europe GmbH
Hash 8e3f978a77d191a9e7f94ff9e7090085
8aa9bf7e29101b1bb719e1b95d0ebf3fec801f60
8868d2a2f803ea6802d54a11564b5b96c7d8be56117a328c8f605539d6dee167
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 05:20:17 GMT
ETag: "15e54-5ec75ff02b9dd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhv.woff
200 OK 18 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhv.woff
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format, TrueType, length 18476, version 1.1\012- data
Hash 623e3205570002af47fc2b88f9335d19
b5f79d1934da79c8a4ba381092dad82ffb0582cb
5e03e0c7668266486cab9529702019d75c219fcec2b1e82a7c11797ba9b78506
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN7rgOUuhv.woff HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:02 GMT
ETag: "482c-577c67b744280"
Accept-Ranges: bytes
Content-Length: 18476
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-woff
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem8YaGs126MiZpBA-UFVZ0d.woff
200 OK 18 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem8YaGs126MiZpBA-UFVZ0d.woff
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format, TrueType, length 17704, version 1.1\012- data
Hash bf2d0783515b7d75c35bde69e01b3135
0e92462e402c15295366d912a7b8be303d0257d8
054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:01 GMT
ETag: "4528-577c67b650040"
Accept-Ranges: bytes
Content-Length: 17704
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-woff
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdc1GAK6b.woff2
200 OK 9.4 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdc1GAK6b.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 9432, version 1.0\012- data
Hash 742dcdeaa3727dc977f708e73f15bcc8
329abd664902b2b6e92f9fe7cd50dfbccd2ba760
349c9eaeb1ddfca43b899f7479defefa32bb049c49f25c9ccaa6432cf0ffab95
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdc1GAK6b.woff2 HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:01 GMT
ETag: "24d8-577c67b650040"
Accept-Ranges: bytes
Content-Length: 9432
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdcs.woff
200 OK 17 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdcs.woff
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format, TrueType, length 17068, version 1.1\012- data
Hash db70d0b9cb27ada1a260a2b35e756b8b
691945e705abf1cb1d2547c29f4ac9120dd661de
74644b8261f222f21307a0fa346bf91268885da41906625e18827f2aa4651f6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem6YaGs126MiZpBA-UFUK0Zdcs.woff HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:01 GMT
ETag: "42ac-577c67b650040"
Accept-Ranges: bytes
Content-Length: 17068
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/font-woff
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-2.jpg
200 OK 146 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-2.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, manufacturer=FUJIFILM, model=X100T, orientation=upper-left, xresolution=186, yresolution=194, resolutionunit=2, software=Digital Camera X100T Ver1.11, datetime=2016:08:14 16:53:51, copyright= ], progressive, precision 8, 1920x1280, components 3\012- data
Size 146 kB (145557 bytes)
Hash ade8bd65fa78b93ded37524dea7f48cc
4c97abf4636f9f880b07551c57762246cb13adb9
abf1bf264038af42cee3d2b1067d122cce603fc0752b6486fc5734d9d0173f7c
GET /wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-2.jpg HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 15:21:12 GMT
ETag: "23895-5affca23bca00"
Accept-Ranges: bytes
Content-Length: 145557
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-3.jpg
200 OK 162 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-3.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=22, height=0, bps=0, compression=none, description=Wooden gavel in a courtroom standing upright against a stack of law books on the judges desk, manufacturer=NIKON CORPORATION, model=NIKON D3000, orientation=upper-left, width=0], progressive, precision 8, 1920x1285, components 3\012- data
Size 162 kB (161605 bytes)
Hash fdade656da1d3ca21708c52737223567
ebcdfac48dedb32392e1493974eaadecafb0d032
a467fd6ed806a5e50839d1dbdc8903c2f633394c595d39ca87e9b2168576446e
GET /wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-3.jpg HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 15:21:34 GMT
ETag: "27745-5affca38b7b80"
Accept-Ranges: bytes
Content-Length: 161605
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-4.jpg
200 OK 286 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-4.jpg
IP
ASN #20773 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3600, bps=0, compression=none, PhotometricIntepretation=RGB, manufacturer=Leica Camera AG, model=LEICA S (Typ 007), orientation=upper-left, width=5504], progressive, precision 8, 1920x1255, components 3\012- data
Size 286 kB (286017 bytes)
Hash f6be4bb50dc5d0da893f4c98026a5bb0
6853ce885780b202cc05e24b5d839d3b392b2ef3
4372e1000d90da7a3f22a4a57532fd87f876656c7cab22ea368680e806ebe22e
GET /wp-content/uploads/2020/09/Privatversicherungsrecht-Passau-4.jpg HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:21 GMT
Server: Apache
Last-Modified: Wed, 23 Sep 2020 15:21:48 GMT
ETag: "45d41-5affca4611b00"
Accept-Ranges: bytes
Content-Length: 286017
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:23:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d1605154a552a8c3165c1358ea2e185
2e677da1f57c112d984180ead80481e8797ff2e8
12b075ad3e786dc68ab3fab1e4ce9d6f7810bdebc7bdafd993e19bc5bc7c0abc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: e0d56100-13aa-44e5-ae80-bedfeece87db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV19EUOIAMFjcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900359-5a5402381d61db921a00404d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7ET6kgGgWAKa4_CFCgSwnN8m7FnplxP7zOp8lEyodxn5lmlIIHD4vQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 04:37:30 GMT
age: 71152
etag: "2e677da1f57c112d984180ead80481e8797ff2e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
arbeitsvertrag-passau.de/wp-content/uploads/2020/09/cropped-favicon-256x256-180x180-1.png
200 OK 49 kB URL HTTP/1.1 arbeitsvertrag-passau.de/wp-content/uploads/2020/09/cropped-favicon-256x256-180x180-1.png
IP
ASN #20773 Host Europe GmbH
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 0842be03ae5553b40628a9b367b712fe
3fe7d0e2097f1f1ec5a2abe2113445c54d3ad105
bcb24d7f7531dd9a2d321489b04336ee857f59e4d195edaaf2d777d6d72f2bab
GET /wp-content/uploads/2020/09/cropped-favicon-256x256-180x180-1.png HTTP/1.1
Host: arbeitsvertrag-passau.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Cookie: cmplz_choice=set; cmplz_policy_id=19; cmplz_functional=allow; cmplz_statistics-anonymous=allow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:22 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 12:49:37 GMT
ETag: "c02b-5afd248725a40"
Accept-Ranges: bytes
Content-Length: 49195
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9316e6fcb6eb5f47473eb710872f09e5
368be3ba9d57fb8ed8a936041bb0f4154ae680f1
aa0d429845b669baf996324cb7a5d4b001558c48480b4da43e9b81bdbc335e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10517
x-amzn-requestid: 23d8ce86-b859-43b5-8daa-bed31c10ed24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV5JEuGoAMFVmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6390036d-320dbe9f7805aa015f368a57;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LMXVkrr_tbnnFchwuVT2ngOIspOkQuJoDVzfgl64e11G7QSXYuhc-w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 04:11:31 GMT
age: 72711
etag: "368be3ba9d57fb8ed8a936041bb0f4154ae680f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a22fc7807fb3337f0af5e546c7ad366a
0d5969394b370a5c77c53ed58f55e5f8a45da3ab
98b4f4fd27dc036697fb0328083bce6e691b7493428f3a54991087d9d1165d97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5530
x-amzn-requestid: adecbb8c-cec3-46a0-b32c-0026b8421fe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4d8Fg6IAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903abf-4bcb385f27cb438c36a2cd5e;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDD0v-1I1sFVMsJl64nQDe_hHExMrSLXPrbou_J79YEQf3YwS2oklA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:48:13 GMT
age: 59709
etag: "0d5969394b370a5c77c53ed58f55e5f8a45da3ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:42:37 GMT
age: 74445
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:11:47 GMT
age: 61895
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Il4kJ9VclWp3pqZSUrTpJNEY3vYu4XaZYEXRcrfDINMjyokDNSM8Lg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 04:08:47 GMT
age: 72875
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhpKKSTjw.woff2
200 OK 8.7 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhpKKSTjw.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 8732, version 1.0\012- data
Hash f2af1f64bc0a0e5cfe4b5fee322e4157
fb9679572962f410b5f56d159573debcd5c4eabd
35a21333c81302e934ee42b7b85b2c6a731bfffb418fe52fe795cb1974186976
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhpKKSTjw.woff2 HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:22 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:01 GMT
ETag: "221c-577c67b650040"
Accept-Ranges: bytes
Content-Length: 8732
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhpKKSTjw.woff2
200 OK 8.9 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhpKKSTjw.woff2
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 8916, version 1.0\012- data
Hash a3266f616d034f2351926e133395ff68
cfe161f23412b07caaf2b20fa3b19354e6294d2a
50dda9aac0fcea362bdda27ae7833240485ad5a20ccc105c1cd13ea26802a8bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhpKKSTjw.woff2 HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:22 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:02 GMT
ETag: "22d4-577c67b744280"
Accept-Ranges: bytes
Content-Length: 8916
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhv.woff
200 OK 18 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhv.woff
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format, TrueType, length 18280, version 1.1\012- data
Hash 521d17bc9f3526c690e8ada6eee55bec
0c74bab4a4ebdafe080c8a35bd61d38f1b692358
624b3c987e1731e2871567be1451a257be8ebcaa2abebaa45651d3d95fa99492
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UN_r8OUuhv.woff HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:22 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:01 GMT
ETag: "4768-577c67b650040"
Accept-Ranges: bytes
Content-Length: 18280
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-woff
passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhv.woff
200 OK 18 kB URL HTTP/1.1 passau-arbeitsrecht.de/wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhv.woff
IP
ASN #20773 Host Europe GmbH
File type Web Open Font Format, TrueType, length 18296, version 1.1\012- data
Hash 1cd5320f8937d337b61d5117cf9d7b28
24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/sgf-css/mem5YaGs126MiZpBA-UNirkOUuhv.woff HTTP/1.1
Host: passau-arbeitsrecht.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbeitsvertrag-passau.de
Connection: keep-alive
Referer: https://arbeitsvertrag-passau.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 00:23:22 GMT
Server: Apache
Last-Modified: Tue, 09 Oct 2018 07:14:02 GMT
ETag: "4778-577c67b744280"
Accept-Ranges: bytes
Content-Length: 18296
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/font-woff
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f04d1dc05d36822d7368cdb4d19316c9
5c611ceaf8d4c79edfe37a6201d40917cebeda28
a9336a736295e694564259c4806ed96a00d20844f78f2688ed28251e62a71ceb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6979
x-amzn-requestid: e8dc7a72-f5b3-48cd-a82d-353bace3ed7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F8GIAMFojw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-4c62a5ea0572081c44fd601c;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iiVTNich5HpqlSgfEWIjQ60wOiemqVrn8OyjLle_xLj8WP0yPsU-dQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 04:16:45 GMT
age: 72404
etag: "5c611ceaf8d4c79edfe37a6201d40917cebeda28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
83.169.41.94
23.36.77.32
35.241.9.150
93.184.220.29