Report - 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx

Report Overview

Submitted URL
9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx
IP
13.95.200.229
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2024-04-24 09:35:19
Access
public
Website Title
Der Statusbericht zur globalen Ransomware-Bedrohung 2023
Final URL
www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
p7i.vogel.de	868844	unknown	2018-02-06	2024-02-17	572 B	348 kB	81.173.115.24
cdn1.vogel.de	396174	unknown	2018-10-03	2024-04-17	2.0 kB	17 kB	185.125.168.73
b.delivery.consentmanager.net	88943	2018-05-02	2021-07-25	2024-04-21	2.3 kB	8.5 kB	87.230.98.78
lgt0fv.security-insider.de	unknown	unknown	No data	No data	2.1 kB	282 kB	217.160.200.101
cdn.consentmanager.net	29447	2018-05-02	2021-02-08	2024-04-23	3.4 kB	619 kB	185.76.9.15
www.security-insider.de	unknown	unknown	2013-05-12	2024-01-24	1.9 kB	216 kB	81.173.115.24
cp.security-insider.de	unknown	unknown	2021-07-23	2024-01-24	1.4 kB	39 kB	146.59.69.202
data-e91e634815.security-insider.de	unknown	unknown	2021-12-02	2024-01-24	448 B	1.1 kB	91.215.100.76
9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com	unknown	1994-04-12	2023-08-14	2023-08-24	2.2 kB	2.4 kB	13.95.200.229
mktdplp102cdn.azureedge.net	41334	2014-01-22	2018-02-07	2024-04-16	481 B	11 kB	152.199.19.161
cdn2.vogel.de	512035	unknown	2018-10-03	2024-02-28	9.5 kB	1.0 MB	185.125.168.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	8.9 kB	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:26 Last Seen2024-04-24 11:35:26 Times Seen1 Hash 05e65f763ff6d4befa96a984479e416f 35f2bb99e3e56f29a7c83745b8f90dff96b54deb c683c382d43fe479827ab24d157de23f15d2be4c44f97a797e1d63bb5388706f Loading...

	cdn2.vogel.de/js/vendors/hoverintent/jquery.hoverintent.min.js	2.2 kB	2023-03-07	2024-05-05
Pretty URL cdn2.vogel.de/js/vendors/hoverintent/jquery.hoverintent.min.js IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-05 18:22:23 Times Seen918 Hash db954eadb8d5c1fb769afa7b26366379 a49f29d18742f94ec338d0056c6e348fec54a41a 844723d288a84c14a3f75ff2db1463fca5b4c4c710e3cc3a111624ed959665d9 Loading...

	unknown	1.4 kB	2024-04-24	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:26 Last Seen2024-04-24 11:35:26 Times Seen1 Hash 67011f3736a1ac953023bd23b8c562e7 dda692c387be5970f983a59b50eefa28e3bc28c2 8d9edd1956e0cff08bdbd8df88fb5698dc3f22513074c6776d68b08ebf2c4036 Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	245 B	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:26 Last Seen2024-04-24 11:35:26 Times Seen1 Hash 06fbf54eadeb749e35a4956633830b52 e38a6f6bf47534e4d3f681212e21b3139a5dfff9 ff236d9d424f41406fc26e81f15eb816cd322d2afea7399d382e451649d6cad9 Loading...

	b.delivery.consentmanager.net/delivery/cmp.php?id=28861cdid=dad7ce8852c7&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&&usedesign=13776&l=en&o=1713951308780	7.3 kB	2024-04-24	2024-04-24
Pretty URL b.delivery.consentmanager.net/delivery/cmp.php?id=28861cdid=dad7ce8852c7&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&&usedesign=13776&l=en&o=1713951308780 IP 87.230.98.78 ASN #61157 PlusServer GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:26 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 5f9d99d143bd6369ed43447a98b5af0c 047c534c507624d4a9be9c0f45c6921f1b9bb4aa d75d9c9a3bff1ac0329f5d9c83e5f3eb620d8fb90e8946a8c2d07544fd7999c0 Loading...

	cdn.consentmanager.net/delivery/crossdomain.html	0 B	2023-03-07	2024-05-05
Pretty URL cdn.consentmanager.net/delivery/crossdomain.html IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 23:01:22 Times Seen37371076 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	632 B	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 3f3b212420351e87739fa1ac1ea015f1 fcd940fb3e4fba9edbcc360c98ec8fb9bce6ddc0 d5b530ead03861fb754ec157fb1bf67f4f91b8ce4ac2649a71f71e4c0d4143c5 Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	3.3 kB	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 56b51eeaa6507d7a212d4cb7f15b1008 8c00bcd8cca4dc8492fdb8a4e551caf04c4430ee 331e573c2050b3ba1e70c5e0685e852d908177254b947ff7fd4b30bb6f414172 Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	2.0 kB	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 858435490c71712ebc254c67b3c4bef6 dee283ad2c24cb52bbdf29cf64d56a69c6378a03 1079cb5e89f855713491be07f4a17f1e14010dab4e595160d00eb181b2c92c78 Loading...

	cdn2.vogel.de/js/vendors/lazysizes/lazysizes.min.js	7.8 kB	2023-03-07	2024-04-24
Pretty URL cdn2.vogel.de/js/vendors/lazysizes/lazysizes.min.js IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:16:56 Last Seen2024-04-24 11:35:27 Times Seen8 Hash b4f12228db790b9014f4d155da4163df e93a4e1eead5263216e41d46c04f9dadf43933c6 8e2f3aeb7abcf9c49c28b01aae3457238281c820f9df2764c47986554d409034 Loading...

	cdn2.vogel.de/js/vendors/respiframe/jquery.responsiveiframe.js	4.0 kB	2023-03-13	2024-04-24
Pretty URL cdn2.vogel.de/js/vendors/respiframe/jquery.responsiveiframe.js IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:33:22 Last Seen2024-04-24 11:35:27 Times Seen8 Hash f88827f10fd036d4a90f671e98afac9e b6b074e79b38b5b506e543996e34a478cfc8ef21 c1eed181f058ddbb163626c7ce77b33378e4848d4feb35695a8b0e7326bc875e Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	451 B	2023-11-16	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-16 02:27:08 Last Seen2024-04-24 11:35:27 Times Seen3 Hash 198515e3028de33eaa4937d3234a2935 26f735bdc6bf65ff11ac5e338df2e3286a0b970f f5dbefea3e16266402a3e5efa63b06e845d8c685b5b03200fcbba6273158fe83 Loading...

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI	9.3 kB	2024-04-24	2024-04-24
Pretty URL www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 6cbc6f38e74df9ede7bb20b1d1683554 f8a0452346f3fbc60192a281322d9917b28c8676 dbfce006c70f36c1856a5a465fce17d35e8dd911ee0db80b61ef7c45dd6675ee Loading...

	cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZGUuZF8xMzc3Ni54XzExLnAudi50XzEzNzc2Lnh0XzEx.js	94 kB	2024-04-24	2024-04-24
Pretty URL cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZGUuZF8xMzc3Ni54XzExLnAudi50XzEzNzc2Lnh0XzEx.js IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:28 Times Seen2 Hash 5567201ab413cb777c836cd7f1d48087 cfc4fb7bc30bf20bf1660d65dabccdf4dfd6c916 e69c5df055cdbd52fc55dbf14c55badb0ddba2ba62b6aaaaaadf9b238466d408 Loading...

	data-e91e634815.security-insider.de/iomm/latest/bootstrap/stub.js	404 B	2023-05-18	2024-04-24
Pretty URL data-e91e634815.security-insider.de/iomm/latest/bootstrap/stub.js IP 91.215.100.76 ASN #43407 INFOnline GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:48:00 Last Seen2024-04-24 11:35:27 Times Seen36 Hash 374076557a35d544ce41cfd77d7a2852 f9a477e689c3082dfcf8b31bf83804f6376509f6 87ecc61aa298591fb617d6e1c8d81e41272775ced6affec58be11102add42fa2 Loading...

	cdn.consentmanager.net/delivery/js/cmp_en.min.js	430 kB	2024-04-23	2024-04-24
Pretty URL cdn.consentmanager.net/delivery/js/cmp_en.min.js IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 21:59:15 Last Seen2024-04-24 11:37:18 Times Seen11 Hash 525720332d19f4deaf7c560cf1601be8 47a9fac15c1d53dd2e66419f1bde9c3183216ff2 60e6ed03711cc95547c90e9cb619e569c8ad974cfe61b48904cc39f8404587d1 Loading...

	cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZW4uZF8xMzc3Ni54XzExLnYucC50XzEzNzc2Lnh0XzEx.js	87 kB	2024-04-24	2024-04-24
Pretty URL cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZW4uZF8xMzc3Ni54XzExLnYucC50XzEzNzc2Lnh0XzEx.js IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:28 Times Seen2 Hash 440889df35e6935e565ef45c7de54df1 16c81db04e4ec8528b20d3de7b7d2a0beba1e71d 5881353c957ce69b855c48bddf848bdf6a5f4cae59cd2471b9898483d835860a Loading...

	lgt0fv.security-insider.de/get/live/web/_/mlxb9w.js	280 kB	2024-04-24	2024-04-24
Pretty URL lgt0fv.security-insider.de/get/live/web/_/mlxb9w.js IP 217.160.200.101 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:28 Times Seen2 Hash 32887d147503796872ef3c881ecf4fb6 54a2c5d565494b9d295c866bdba9ae07e410741c 9315ca0344ac14de6d433b8b3b492d227b3934134cbf82e5cd283ae9a66301f6 Loading...

	cp.security-insider.de/chunks/chunk-cmp-consentmanager.20240423095031-0ab9f2f096.a8c025237ac96a9273e5.js	4.2 kB	2024-04-08	2024-04-24
Pretty URL cp.security-insider.de/chunks/chunk-cmp-consentmanager.20240423095031-0ab9f2f096.a8c025237ac96a9273e5.js IP 146.59.69.202 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-08 19:07:47 Last Seen2024-04-24 11:37:18 Times Seen6 Hash 2675d382c367fc75d03defed99e48bd7 fa66f4103f3391b532bb021c007421befbfd6fc8 a83e82d3d92db0370eacce70cd3e7a5bb0f0fcc2d135d8285b675fdbaa7ae81f Loading...

	cdn2.vogel.de/js/menu.js?v=1.0	4.7 kB	2023-03-13	2024-04-24
Pretty URL cdn2.vogel.de/js/menu.js?v=1.0 IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:33:22 Last Seen2024-04-24 11:35:27 Times Seen8 Hash 30abf7b144d684e6a8324b689f23f497 71c24254bef38fdf0d4ae0ff2b85f8b5684e3445 c52a0043156f079105f4c3d74999655d88a8059b3728385fc939d41ed7cb277f Loading...

	cdn2.vogel.de/js/custom.js?v=1.0	40 kB	2024-04-24	2024-04-24
Pretty URL cdn2.vogel.de/js/custom.js?v=1.0 IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 96bb5f9899a0544d33ef8f806f772891 eac71649f57b93a8ef16fe2af5d13a1f5a5eab70 04d281cfba5735a25b62f55a15fc9eddf318e23e29738f2e7f79010be0aea8ad Loading...

	cdn2.vogel.de/js/vendors/lazysizes/plugins/print/ls.print.min.js	726 B	2023-03-13	2024-04-24
Pretty URL cdn2.vogel.de/js/vendors/lazysizes/plugins/print/ls.print.min.js IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:33:22 Last Seen2024-04-24 11:35:27 Times Seen9 Hash 9631327ee206294e70f230511b7c9b0c 86665985b59d5179807a4c5edf5519bcbc526d30 584f001c84448fbd3be81ed64cfb57e0ed5e3b156103dc9736373d2816b81b4e Loading...

	cp.security-insider.de/now.js	80 kB	2024-04-24	2024-04-24
Pretty URL cp.security-insider.de/now.js IP 146.59.69.202 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:37:17 Times Seen3 Hash fabaae0b986e2c9978686985dc5f5700 c77d6f55c5973c6546c313dcdd29ffbb8f4b33b0 43822fcbcf451896c2b721f3a752bd385e67594eda10d855d48f3cc8871113ad Loading...

	cdn2.vogel.de/js/vendors/jquery/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-05
Pretty URL cdn2.vogel.de/js/vendors/jquery/jquery-3.5.1.min.js IP 185.125.168.73 ASN #56655 TerraHost AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:27 Last Seen2024-05-05 20:21:12 Times Seen4934 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

	unknown	444 B	2024-04-24	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:35:27 Last Seen2024-04-24 11:35:27 Times Seen1 Hash 8b5f5b48d484939b65ed40f18e1d64a0 1e39d60ced4a44997af2b088e1b0fe60624fd816 1b4766ecde2dab5a333d8260e92a5d8fec9071d3fa3f6e87f0d2f49ac3d961df Loading...

HTTP Transactions (50)

	URL	IP	Response	Size
	9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx	13.95.200.229	200 OK	782 B
URL User Request GET HTTP/2 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx IP 13.95.200.229:443 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerMicrosoft Corporation Subject.svc.dynamics.com Fingerprint4C:E3:14:1F:7E:4E:81:D7:8C:CB:0A:BA:BB:E1:18:D4:81:B8:DE:37 ValidityMon, 01 Apr 2024 08:09:38 GMT - Thu, 27 Mar 2025 08:09:38 GMT File type HTML document, ASCII text, with very long lines (782), with no line terminators Size 782 B (782 bytes) Hash 13a31e56476ffeb5e0f2dea708e6ac32 545d487f56f71a89a375f1c7db9d6941443e1fa3 071769be8096fbf4412a7b32692524cb5d7ec623c134ee1bb5bfa0e9106b1dc8 HTTP Headers GET /t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx HTTP/1.1 Host: 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-length: 782 content-type: text/html; charset=utf-8 server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0 set-cookie: 79f08280-5c63-4331-b04d-fb6f39afda51=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E; expires=Fri, 24 Apr 2026 09:34:52 GMT; path=/; secure; httponly; SameSite=None 319af4c0-e197-4de9-8a9b-fe98c8a2ca04=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E; path=/; secure; httponly; SameSite=None x-activity-id: c2ea436e-7398-4dd9-a3be-572d67d0f753 x-servicefabricrequestid: 7cd0fedd-8ba7-41b9-beea-cfef8dfd3e9d, c99e63cd-676b-46ff-9167-d186f4740a6a x-ms-activity-id: c2ea436e-7398-4dd9-a3be-572d67d0f753 api-deprecated: False x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains date: Wed, 24 Apr 2024 09:34:52 GMT X-Firefox-Spdy: h2

	mktdplp102cdn.azureedge.net/public/latest/js/bot-detection.js?v=1.84.2007	152.199.19.161		10 kB
URL mktdplp102cdn.azureedge.net/public/latest/js/bot-detection.js?v=1.84.2007 IP 152.199.19.161:0 ASN #15133 EDGECAST File type JavaScript source, Unicode text, UTF-8 text, with very long lines (19601), with CRLF line terminators Size 10 kB (10471 bytes) Hash 629fb69a45e4e0c36fd741fbde32cb09 5f194b5d54b012872469ab3173d55c188d101858 84eacf3f43bf7b9177fb78c533f34c3930cd517da0295bfd57bd5e01b2400ed8 HTTP Headers `GET /public/latest/js/bot-detection.js?v=1.84.2007 HTTP/1.1 Host: mktdplp102cdn.azureedge.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-encoding: gzip access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding age: 489394 content-md5: Yp+2mkXk4MNv10H73jLLCQ== content-type: application/x-javascript date: Wed, 24 Apr 2024 09:34:53 GMT etag: 0x8DB0E75DA644AE9 last-modified: Tue, 14 Feb 2023 10:25:54 GMT server: ECAcc (ska/F797) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-request-id: 36b2e706-b01e-00b4-64b7-919f88000000 x-ms-version: 2009-09-19 content-length: 10471 X-Firefox-Spdy: h2

	9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/favicon.ico	13.95.200.229		0 B
URL 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/favicon.ico IP 13.95.200.229:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerMicrosoft Corporation Subject.svc.dynamics.com Fingerprint4C:E3:14:1F:7E:4E:81:D7:8C:CB:0A:BA:BB:E1:18:D4:81:B8:DE:37 ValidityMon, 01 Apr 2024 08:09:38 GMT - Thu, 27 Mar 2025 08:09:38 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx Cookie: 79f08280-5c63-4331-b04d-fb6f39afda51=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E; 319af4c0-e197-4de9-8a9b-fe98c8a2ca04=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 404 Not Found content-length: 0 server: Microsoft-HTTPAPI/2.0 x-ms-activity-id: bfc47ec2-e438-41d5-8981-1a9058a122b6 api-deprecated: False x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains date: Wed, 24 Apr 2024 09:34:52 GMT X-Firefox-Spdy: h2`

	9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/cp	13.95.200.229		0 B
URL 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/cp IP 13.95.200.229:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerMicrosoft Corporation Subject.svc.dynamics.com Fingerprint4C:E3:14:1F:7E:4E:81:D7:8C:CB:0A:BA:BB:E1:18:D4:81:B8:DE:37 ValidityMon, 01 Apr 2024 08:09:38 GMT - Thu, 27 Mar 2025 08:09:38 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /t/cp HTTP/1.1 Host: 9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/t/t/cixotNZCaMIzyGkuxiVvGlxwxcV0PjR9rvCdlrhHbTUx/rb44Fpz3i0ALkKtpKxxXUJLs1HaYLJUQBAI1haSJ4uwx Content-Type: application/json Content-Length: 378 Origin: https://9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com DNT: 1 Connection: keep-alive Cookie: 79f08280-5c63-4331-b04d-fb6f39afda51=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E; 319af4c0-e197-4de9-8a9b-fe98c8a2ca04=Wg9jp34nsvK035ZDxwCL8q_lnm28ir3go7H1ikA5g_E Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content content-length: 0 server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0 x-activity-id: 6655709a-f853-4e4d-80bd-1d0435dc68e4 x-servicefabricrequestid: e0f642be-fc70-499d-9181-9e17eb6e4874, 4858f5c6-2097-4d52-b9e1-15e0791517ca x-ms-activity-id: 6655709a-f853-4e4d-80bd-1d0435dc68e4 api-deprecated: False x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains date: Wed, 24 Apr 2024 09:34:53 GMT X-Firefox-Spdy: h2`

	cdn2.vogel.de/js/vendors/lazysizes/plugins/print/ls.print.min.js	185.125.168.73	200 OK	726 B
URL GET HTTP/2 cdn2.vogel.de/js/vendors/lazysizes/plugins/print/ls.print.min.js IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type JavaScript source, ASCII text, with very long lines (700) Size 726 B (726 bytes) Hash 9631327ee206294e70f230511b7c9b0c 86665985b59d5179807a4c5edf5519bcbc526d30 584f001c84448fbd3be81ed64cfb57e0ed5e3b156103dc9736373d2816b81b4e HTTP Headers `GET /js/vendors/lazysizes/plugins/print/ls.print.min.js HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript content-length: 726 last-modified: Mon, 22 Apr 2024 16:15:06 GMT etag: "66268d0a-2d6" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/vendors/lazysizes/plugins/print/ls.print.min.js>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn2.vogel.de/img/arrow_dropdown.svg	185.125.168.73	200 OK	408 B
URL GET HTTP/2 cdn2.vogel.de/img/arrow_dropdown.svg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type SVG Scalable Vector Graphics image Size 408 B (408 bytes) Hash 7ca62514d1280a52a3ec43d662c3fbd4 e5fdc89adb8eb1007d313a18184816d0778ac091 bcbbc7a71e20abca7606b04ae45b7e680ce3b7a340c7a0e76f37107dd3ba0b7c HTTP Headers `GET /img/arrow_dropdown.svg HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/svg+xml content-length: 408 last-modified: Mon, 22 Apr 2024 16:15:06 GMT etag: "66268d0a-198" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/img/arrow_dropdown.svg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn2.vogel.de/applications/8/scss/basic.css?v=1.040	185.125.168.73	200 OK	47 kB
URL GET HTTP/2 cdn2.vogel.de/applications/8/scss/basic.css?v=1.040 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type gzip compressed data, max speed, from Unix Size 47 kB (46583 bytes) Hash adf33a0e27bc953d16608011abea5ce0 4fae06f230ac3c65e2052a06a95810f120d8fde0 741c2b9926faf31ae16d31e91152dd22a816b87705db1679f3432c2c43d2f977 HTTP Headers `GET /applications/8/scss/basic.css?v=1.040 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: text/css last-modified: Mon, 22 Apr 2024 16:15:18 GMT vary: Accept-Encoding etag: W/"66268d16-3668d" cache-tag: 8 nginx p7f.vogel.de-8 content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/applications/8/scss/basic.css?v=1.040>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn1.vogel.de/V-fQpBVA9oxteBMRLBeapVq_sDw=/88x88/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg	185.125.168.73	200 OK	190 B
URL GET HTTP/2 cdn1.vogel.de/V-fQpBVA9oxteBMRLBeapVq_sDw=/88x88/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn1.vogel.de Fingerprint43:9D:4B:7D:15:17:80:E5:1B:5A:B1:39:47:B2:FE:00:51:F4:24:B3 ValidityMon, 26 Feb 2024 05:19:56 GMT - Sun, 26 May 2024 05:19:55 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 88x88, components 1 Size 190 B (190 bytes) Hash 3e45a507d0c7d6669cee51ac9e5beb94 9da918cb7ec9c3d1167602070a8565a924d4d737 39223ea9ddd014754c24cbe050ac92c20026526526676c892cce69adfb515870 HTTP Headers `GET /V-fQpBVA9oxteBMRLBeapVq_sDw=/88x88/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg HTTP/1.1 Host: cdn1.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/jpeg content-length: 190 cache-control: max-age=14400 expires: Wed, 24 Apr 2024 13:35:08 GMT etag: "9da918cb7ec9c3d1167602070a8565a924d4d737" cache-tag: production thumbor thumbor-88x88 thumbor-smart-or-not link: <https://p7i.vogel.de/V-fQpBVA9oxteBMRLBeapVq_sDw=/88x88/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	cdn1.vogel.de/wcms/66/13/6613c64e7fb85/award.jpeg	185.125.168.73	200 OK	14 kB
URL GET HTTP/2 cdn1.vogel.de/wcms/66/13/6613c64e7fb85/award.jpeg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn1.vogel.de Fingerprint43:9D:4B:7D:15:17:80:E5:1B:5A:B1:39:47:B2:FE:00:51:F4:24:B3 ValidityMon, 26 Feb 2024 05:19:56 GMT - Sun, 26 May 2024 05:19:55 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x100, components 3 Size 14 kB (13653 bytes) Hash c1a7790621fe016e67f44a3e552fd0c0 c770c8bcd888f8ffd25e8e4b6bcb5bd52d985947 1ff8e6c4903e276e376983eb6fd158233f5bf2f71eddfbddbe08d689168a5b71 HTTP Headers `GET /wcms/66/13/6613c64e7fb85/award.jpeg HTTP/1.1 Host: cdn1.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/jpeg content-length: 13653 last-modified: Mon, 08 Apr 2024 10:26:33 GMT etag: "6613c659-3555" access-control-allow-headers: Content-Type,Authorization,Lang access-control-allow-methods: POST,GET,PUT,DELETE,OPTIONS cache-tag: production thumbor production-wcms-6613c64e7fb85 source-wcms strict-transport-security: max-age=31536000; expires: Wed, 24 Apr 2024 13:35:08 GMT cache-control: max-age=14400 link: <https://p7i.vogel.de/wcms/66/13/6613c64e7fb85/award.jpeg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	cdn1.vogel.de/0VjUeusBtkuCAtLQZ78GPli8Ebs=/288x162/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg	185.125.168.73	200 OK	349 B
URL GET HTTP/2 cdn1.vogel.de/0VjUeusBtkuCAtLQZ78GPli8Ebs=/288x162/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn1.vogel.de Fingerprint43:9D:4B:7D:15:17:80:E5:1B:5A:B1:39:47:B2:FE:00:51:F4:24:B3 ValidityMon, 26 Feb 2024 05:19:56 GMT - Sun, 26 May 2024 05:19:55 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 288x162, components 1 Size 349 B (349 bytes) Hash 9e0d0d6dd0c9bd5fad6c8b259119bc59 0684b9547c06b1b32716412b5c2f4b29eab89873 e86ba6b8d30e11f397953268aae0d9986de685828d4b8fb774297d0c43eb5eb0 HTTP Headers `GET /0VjUeusBtkuCAtLQZ78GPli8Ebs=/288x162/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg HTTP/1.1 Host: cdn1.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/jpeg content-length: 349 cache-control: max-age=14400 expires: Wed, 24 Apr 2024 13:35:08 GMT etag: "0684b9547c06b1b32716412b5c2f4b29eab89873" cache-tag: production thumbor thumbor-288x162 thumbor-smart-or-not link: <https://p7i.vogel.de/0VjUeusBtkuCAtLQZ78GPli8Ebs=/288x162/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	cdn1.vogel.de/EdImWpkUx3dyahS1IhNKkBQqFRI=/400x400/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg	185.125.168.73	200 OK	785 B
URL GET HTTP/2 cdn1.vogel.de/EdImWpkUx3dyahS1IhNKkBQqFRI=/400x400/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn1.vogel.de Fingerprint43:9D:4B:7D:15:17:80:E5:1B:5A:B1:39:47:B2:FE:00:51:F4:24:B3 ValidityMon, 26 Feb 2024 05:19:56 GMT - Sun, 26 May 2024 05:19:55 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x400, components 1 Size 785 B (785 bytes) Hash b475a53966da45a0c4bb2d65a068ca18 6c462fb9a47d4364db0fcd5851bed2f3f4926f0c fb1d9b28820a98dea4b4c2ef10b6b7f6aea00aef3525585a47e814a6e046608d HTTP Headers `GET /EdImWpkUx3dyahS1IhNKkBQqFRI=/400x400/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg HTTP/1.1 Host: cdn1.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/jpeg content-length: 785 cache-control: max-age=14400 expires: Wed, 24 Apr 2024 13:35:08 GMT etag: "6c462fb9a47d4364db0fcd5851bed2f3f4926f0c" cache-tag: production thumbor thumbor-400x400 thumbor-smart-or-not strict-transport-security: max-age=31536000; link: <https://p7i.vogel.de/EdImWpkUx3dyahS1IhNKkBQqFRI=/400x400/filters:quality(1)/cdn4.vogel.de/infinity/white.jpg>; rel="canonical" x-cache: REVALIDATED x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2

	cdn2.vogel.de/js/vendors/lazysizes/lazysizes.min.js	185.125.168.73	200 OK	72 kB
URL GET HTTP/2 cdn2.vogel.de/js/vendors/lazysizes/lazysizes.min.js IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type gzip compressed data, max speed, from Unix Size 72 kB (71592 bytes) Hash 4e6140bd183015de5e02045b8789db60 dae008a20c80b5f99656b7faac2f26cf2b335dba 1d93a9656e0f083c4e434c93f7a8a7f04c5e646931f303bd1b27fa8b3a118cee HTTP Headers `GET /js/vendors/lazysizes/lazysizes.min.js HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-1e5a" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/vendors/lazysizes/lazysizes.min.js>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn2.vogel.de/scss/fonts/Glyphter.woff	185.125.168.73	200 OK	16 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/Glyphter.woff IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format, TrueType, length 9199, version 14319.-16451 Size 16 kB (16235 bytes) Hash 2739b1ddae75c9faa89a627c144ad739 323dcb59ed66ef6bd5dad5ed9c7122d94ae5a5a6 2898432aedc687e80e5be0390030fba9d45edd22831eba385bae93ba64c93346 HTTP Headers `GET /scss/fonts/Glyphter.woff HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: font/woff content-length: 16235 last-modified: Mon, 22 Apr 2024 16:15:06 GMT etag: "66268d0a-3f6b" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/Glyphter.woff>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn2.vogel.de/js/vendors/hoverintent/jquery.hoverintent.min.js	185.125.168.73	200 OK	77 kB
URL GET HTTP/2 cdn2.vogel.de/js/vendors/hoverintent/jquery.hoverintent.min.js IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type gzip compressed data, max speed, from Unix Size 77 kB (77389 bytes) Hash 1826e101f3ec34d5a54e1c73eb26a8e1 492db17b75109407c8e0692112c42b7144ceb6db eca9bd5ef93e92aefe06317ef1d78726599594fb09de214f8d985730e8d5cdb0 HTTP Headers `GET /js/vendors/hoverintent/jquery.hoverintent.min.js HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-8c4" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/vendors/hoverintent/jquery.hoverintent.min.js>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/flags/de.gif	185.76.9.15	200 OK	362 B
URL GET HTTP/2 cdn.consentmanager.net/delivery/flags/de.gif IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type GIF image data, version 89a, 16 x 11 Size 362 B (362 bytes) Hash b0dbdccf1c4e4a267a5cd2bf7ea4cb69 d2b74fbbeb420a6be350e4554233e6db3685f970 4ac4ccd6f0702c91e9251cb2b4bcbfd5854f6cb1d274dd2623f42e38ef7532d5 HTTP Headers `GET /delivery/flags/de.gif HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: image/gif content-length: 362 last-modified: Mon, 14 Jun 2021 21:37:37 GMT etag: "16a-5c4c0aa828a40" cache-control: max-age=31536000 expires: Sat, 15 Feb 2025 13:39:53 GMT edge-control: max-age=2592000 x-77-nzt: EwwBuUwJDQH31WtZAAwBuUwKEwH3ygAAAAwBnJIhHwH3BQAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd228660cc7151b x-accel-expires: @1739626793 x-accel-date: 1708091000 x-77-cache: HIT x-77-age: 5860516 server: CDN77-Turbo x-cache: HIT x-age: 5860309 x-77-pop: stockholmSE accept-ranges: bytes X-Firefox-Spdy: h2

	b.delivery.consentmanager.net/delivery/info/?id=28861&did=7&cfdid=7&t=pv.pun.d_ncs.d_ancs.d_bncs.d_pur&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309428&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776	87.230.98.78	200 OK	43 B
URL GET HTTP/2 b.delivery.consentmanager.net/delivery/info/?id=28861&did=7&cfdid=7&t=pv.pun.d_ncs.d_ancs.d_bncs.d_pur&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309428&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776 IP 87.230.98.78:443 ASN #61157 PlusServer GmbH Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectb.delivery.consentmanager.net FingerprintE5:E4:7C:F4:BD:BA:2E:90:3A:3F:BE:F0:A5:7B:B4:B2:F0:BF:0D:3A ValidityThu, 14 Mar 2024 00:37:25 GMT - Wed, 12 Jun 2024 00:37:24 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash 6f81c41597d3f5a336f458822cc0c32a 8cd77a54b38f1fb376b45af2eaab8f5982523b8d 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc HTTP Headers GET /delivery/info/?id=28861&did=7&cfdid=7&t=pv.pun.d_ncs.d_ancs.d_bncs.d_pur&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309428&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776 HTTP/1.1 Host: b.delivery.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT cache-control: no-store, no-cache, must-revalidate edge-control: no-store, no-cache, must-revalidate expires: Thu, 01 Dec 1994 16:00:00 GMT pragma: no-cache access-control-allow-origin: * x-xss-protection: 0 last-modified: Wed, 24 Apr 2024 09:35:09 GMT content-length: 43 content-type: image/gif X-Firefox-Spdy: h2`

	b.delivery.consentmanager.net/delivery/info/?id=28861&did=7&cfdid=7&t=cv&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309430&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776	87.230.98.78	200 OK	43 B
URL GET HTTP/2 b.delivery.consentmanager.net/delivery/info/?id=28861&did=7&cfdid=7&t=cv&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309430&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776 IP 87.230.98.78:443 ASN #61157 PlusServer GmbH Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectb.delivery.consentmanager.net FingerprintE5:E4:7C:F4:BD:BA:2E:90:3A:3F:BE:F0:A5:7B:B4:B2:F0:BF:0D:3A ValidityThu, 14 Mar 2024 00:37:25 GMT - Wed, 12 Jun 2024 00:37:24 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash 6f81c41597d3f5a336f458822cc0c32a 8cd77a54b38f1fb376b45af2eaab8f5982523b8d 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc HTTP Headers GET /delivery/info/?id=28861&did=7&cfdid=7&t=cv&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&o=1713951309430&l=DE&lv=80923&d=7&ct=14&e=&e2=&e3=&i=&sv=156&dv=11&&usedesign=13776 HTTP/1.1 Host: b.delivery.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT cache-control: no-store, no-cache, must-revalidate edge-control: no-store, no-cache, must-revalidate expires: Thu, 01 Dec 1994 16:00:00 GMT pragma: no-cache access-control-allow-origin: * x-xss-protection: 0 last-modified: Wed, 24 Apr 2024 09:35:09 GMT content-length: 43 content-type: image/gif X-Firefox-Spdy: h2`

	cdn2.vogel.de/js/vendors/jquery/jquery-3.5.1.min.js	185.125.168.73	200 OK	232 kB
URL GET HTTP/2 cdn2.vogel.de/js/vendors/jquery/jquery-3.5.1.min.js IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type gzip compressed data, max speed, from Unix Size 232 kB (231910 bytes) Hash 9901ad4b45e0301c2beccae08d54de8a 8703ce970934bc60a6343c1714c8ecd81a0a45f5 cc69999df8f3e32edac5fc13f5379e915eb577836e0e0d33e4b8d8ef7092b245 HTTP Headers `GET /js/vendors/jquery/jquery-3.5.1.min.js HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-15d83" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/vendors/jquery/jquery-3.5.1.min.js>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	www.security-insider.de/favicon-16x16.png	81.173.115.24	200 OK	510 B
URL GET HTTP/2 www.security-insider.de/favicon-16x16.png IP 81.173.115.24:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectsecurity-insider.de FingerprintD8:6C:91:1D:F4:92:83:65:2F:2C:7B:DB:96:4B:48:8D:57:19:DE:D5 ValidityMon, 01 Apr 2024 00:21:09 GMT - Sun, 30 Jun 2024 00:21:08 GMT File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced Size 510 B (510 bytes) Hash 6c1168d449142888f9804e3464b9dd4e c48afd8a2da4fea5712932f168a2d719a89b9e30 9f287ceff004142f4dd36fe3928802e7c1f6b38ede1b778d818d842f0d3d5020 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: www.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17 Cookie: INFINITYWATCHER=52eaasvvag5oqes061u5t3ootq Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: James date: Wed, 24 Apr 2024 09:35:09 GMT content-type: image/png content-length: 510 last-modified: Tue, 23 Apr 2024 14:32:29 GMT etag: "6627c67d-1fe" expires: Fri, 26 Apr 2024 09:35:09 GMT cache-control: max-age=172800 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' cache-tag: nginx www.security-insider.de-icon accept-ranges: bytes strict-transport-security: max-age=31536000; X-Firefox-Spdy: h2

	cp.security-insider.de/now.js	146.59.69.202	200 OK	30 kB
URL GET HTTP/2 cp.security-insider.de/now.js IP 146.59.69.202:443 ASN #16276 OVH SAS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcp.security-insider.de Fingerprint47:84:DE:AD:87:30:E0:19:9D:E9:6C:8A:D1:B7:A1:20:FB:4F:97:48 ValidityFri, 22 Mar 2024 10:09:15 GMT - Thu, 20 Jun 2024 10:09:14 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 30 kB (30141 bytes) Hash fabaae0b986e2c9978686985dc5f5700 c77d6f55c5973c6546c313dcdd29ffbb8f4b33b0 43822fcbcf451896c2b721f3a752bd385e67594eda10d855d48f3cc8871113ad HTTP Headers `GET /now.js HTTP/1.1 Host: cp.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/javascript server: BunnyCDN-PL1-1175 cdn-pullzone: 1938543 cdn-uid: 9b8242a4-b3ec-45cc-97e6-8f0d6d325fb8 cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-expose-headers: * age: 157 alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000 cache-control: public, max-age=600 expires: Wed, 24 Apr 2024 06:40:28 GMT last-modified: Tue, 23 Apr 2024 10:19:07 GMT cdn-proxyver: 1.04 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 04/24/2024 06:36:13 cdn-edgestorageid: 1175 cdn-status: 200 cdn-requestid: 94421475c0860065c5b81d1a8725255b cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	lgt0fv.security-insider.de/	217.160.200.101	200 OK	42 B
URL POST HTTP/2 lgt0fv.security-insider.de/ IP 217.160.200.101:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectlgt0fv.security-insider.de FingerprintD6:EB:85:E5:28:1F:E2:1A:04:8C:3D:E3:4D:BC:48:E6:0A:4D:AD:22 ValidityTue, 27 Feb 2024 03:01:20 GMT - Mon, 27 May 2024 03:01:19 GMT File type JSON text data Size 42 B (42 bytes) Hash bfe820f4b9719b2b607026af2419bfec 971a128562f900cbeb6d32152b02c566678601fc 26a30f764d23fd9029d6daec0f77b89797511eb68eabec5771ad99bcbb8010ee HTTP Headers `POST / HTTP/1.1 Host: lgt0fv.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/json Content-Length: 921 Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:10 GMT content-type: text/html; charset=utf-8 content-length: 42 access-control-allow-origin: https://www.security-insider.de access-control-allow-credentials: true set-cookie: jts-rw={"u":"99670171395130971098660"};Max-Age=33696000;Path=/; secure; SameSite=Lax; Domain=.security-insider.de etag: W/"2a-lxoShWL5AMvrbTIVKwLFZmeGAfw" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-methods: PUT, GET, PATCH, DELETE, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization X-Firefox-Spdy: h2

	p7i.vogel.de/36sFSLr07sG9et9CPoUENJ8l2hA=/fit-in/1200x630/filters:format(png):quality(90)/p7i.vogel.de/wcms/65/53/65538cbcf20b1/wp-cover-ransomware-bericht-barracuda.png	81.173.115.24	200 OK	348 kB
URL GET HTTP/2 p7i.vogel.de/36sFSLr07sG9et9CPoUENJ8l2hA=/fit-in/1200x630/filters:format(png):quality(90)/p7i.vogel.de/wcms/65/53/65538cbcf20b1/wp-cover-ransomware-bericht-barracuda.png IP 81.173.115.24:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerSectigo Limited Subject.vogel.de Fingerprint7E:56:49:C3:A7:4C:B9:38:6D:62:96:F9:5F:95:2B:CF:F3:B1:86:EF ValidityMon, 15 Apr 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT File type PNG image data, 511 x 630, 8-bit/color RGBA, non-interlaced Size 348 kB (348004 bytes) Hash ee125b23093e96e33b39ae74cec9b370 0d78aa39298718145f345a24f162ec06d8f1afa0 aeb9a13975c4eea83463ad5d8ad983a3a7941d22222460eb27ee0a9251ca9441 HTTP Headers GET /36sFSLr07sG9et9CPoUENJ8l2hA=/fit-in/1200x630/filters:format(png):quality(90)/p7i.vogel.de/wcms/65/53/65538cbcf20b1/wp-cover-ransomware-bericht-barracuda.png HTTP/1.1 Host: p7i.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Wed, 24 Apr 2024 09:35:12 GMT content-type: image/png content-length: 348004 cache-control: max-age=86400,public expires: Thu, 25 Apr 2024 09:35:12 GMT etag: "0d78aa39298718145f345a24f162ec06d8f1afa0" cache-tag: production thumbor thumbor-1200x630 thumbor-fit-in production-wcms-65538cbcf20b1 source-wcms strict-transport-security: max-age=31536000; X-Firefox-Spdy: h2`

	lgt0fv.security-insider.de/	217.160.200.101	200 OK	4 B
URL POST HTTP/2 lgt0fv.security-insider.de/ IP 217.160.200.101:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectlgt0fv.security-insider.de FingerprintD6:EB:85:E5:28:1F:E2:1A:04:8C:3D:E3:4D:BC:48:E6:0A:4D:AD:22 ValidityTue, 27 Feb 2024 03:01:20 GMT - Mon, 27 May 2024 03:01:19 GMT File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash a02439ec229d8be0e74b0c1602392310 61ff81c30aa3c76e78afea62b2e3bd1dfa49e854 9aee6b1bcdf617d8e39bb1f2b624c68ea33deb9d48e0364aeaded836d3d00293 HTTP Headers OPTIONS / HTTP/1.1 Host: lgt0fv.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.security-insider.de/ Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:12 GMT content-type: text/html; charset=utf-8 content-length: 4 allow: POST etag: W/"4-Yf+Bwwqjx254r+pisuO9HfpJ6FQ" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: https://www.security-insider.de access-control-allow-credentials: true access-control-allow-methods: PUT, GET, PATCH, DELETE, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization X-Firefox-Spdy: h2

	lgt0fv.security-insider.de/	217.160.200.101	200 OK	42 B
URL POST HTTP/2 lgt0fv.security-insider.de/ IP 217.160.200.101:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectlgt0fv.security-insider.de FingerprintD6:EB:85:E5:28:1F:E2:1A:04:8C:3D:E3:4D:BC:48:E6:0A:4D:AD:22 ValidityTue, 27 Feb 2024 03:01:20 GMT - Mon, 27 May 2024 03:01:19 GMT File type JSON text data Size 42 B (42 bytes) Hash bfe820f4b9719b2b607026af2419bfec 971a128562f900cbeb6d32152b02c566678601fc 26a30f764d23fd9029d6daec0f77b89797511eb68eabec5771ad99bcbb8010ee HTTP Headers POST / HTTP/1.1 Host: lgt0fv.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/json Content-Length: 3832 Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Cookie: jts-rw={"u":"99670171395130971098660"}; jctr_sid=35686171395131273912385 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:12 GMT content-type: text/html; charset=utf-8 content-length: 42 access-control-allow-origin: https://www.security-insider.de access-control-allow-credentials: true set-cookie: jts-rw={"u":"99670171395130971098660"};Max-Age=33696000;Path=/; secure; SameSite=Lax; Domain=.security-insider.de etag: W/"2a-lxoShWL5AMvrbTIVKwLFZmeGAfw" strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-methods: PUT, GET, PATCH, DELETE, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization X-Firefox-Spdy: h2

	data-e91e634815.security-insider.de/iomm/latest/bootstrap/stub.js	91.215.100.76	200 OK	404 B
URL GET HTTP/2 data-e91e634815.security-insider.de/iomm/latest/bootstrap/stub.js IP 91.215.100.76:443 ASN #43407 INFOnline GmbH Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectdata-e91e634815.security-insider.de Fingerprint23:94:F7:67:0B:9D:93:17:19:64:6A:51:9E:4D:FD:DC:62:B5:49:DA ValidityMon, 22 Apr 2024 05:08:52 GMT - Sun, 21 Jul 2024 05:08:51 GMT File type ASCII text, with very long lines (417), with no line terminators Size 404 B (404 bytes) Hash 56a434ac2a5d27d269dae109e53f777b a26775dafd1f9c83c21ebdd005ce3fc33d98737f 8db9c26eaa66ae4f3c3c0145ebf2ff073e5abcd273f4f29acf18b02beb6c1cb4 HTTP Headers `GET /iomm/latest/bootstrap/stub.js HTTP/1.1 Host: data-e91e634815.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Tue, 16 Apr 2024 09:47:32 GMT etag: W/"661e4934-194" expires: Thu, 25 Apr 2024 09:35:08 GMT access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Cookies,X-Robots-Tag vary: Accept-Encoding, Origin cache-control: max-age=86400, public, must-revalidate x-robots-tag: noindex, nofollow, nosnippet, noarchive x-backend-server: sarcdus001.iocnt.net content-encoding: gzip X-Firefox-Spdy: h2

	cdn2.vogel.de/scss/fonts/Fira-Variable/Firava.woff2	185.125.168.73	200 OK	62 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/Fira-Variable/Firava.woff2 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format (Version 2), TrueType, length 62176, version 1.0 Size 62 kB (62176 bytes) Hash 47570141ac875b09bebd38b8126e6399 f27e058486aad7a8ba97e13ff117afe80e4ef129 6bad1f1d0cf413e336092b22d2146b48fff8e49174be23040f85227bb0decee8 HTTP Headers `GET /scss/fonts/Fira-Variable/Firava.woff2 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: font/woff2 last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-f2e0" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/Fira-Variable/Firava.woff2>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cp.security-insider.de/properties/153fe7b8/config.json	146.59.69.202	200 OK	2.2 kB
URL GET HTTP/2 cp.security-insider.de/properties/153fe7b8/config.json IP 146.59.69.202:443 ASN #16276 OVH SAS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcp.security-insider.de Fingerprint47:84:DE:AD:87:30:E0:19:9D:E9:6C:8A:D1:B7:A1:20:FB:4F:97:48 ValidityFri, 22 Mar 2024 10:09:15 GMT - Thu, 20 Jun 2024 10:09:14 GMT File type troff or preprocessor input, ASCII text, with very long lines (2437), with no line terminators Size 2.2 kB (2151 bytes) Hash 21d7704faa6289559aededf340034655 f8544dd301ec0c6a54b5402d292874539bfb2b4b ad5a6246c605e43ff913831f6c7a740c8dbcdd3d4e4a0e4b080df18d6bb1efeb HTTP Headers `GET /properties/153fe7b8/config.json HTTP/1.1 Host: cp.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.security-insider.de/ Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: application/json vary: Accept-Encoding server: BunnyCDN-PL1-1175 cdn-pullzone: 1938543 cdn-uid: 9b8242a4-b3ec-45cc-97e6-8f0d6d325fb8 cdn-requestcountrycode: NO access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, Warning, X-GUploader-Response-Body-Transformations, X-GUploader-UploadID, X-Google-Trace age: 17 alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000 cache-control: public, max-age=180 etag: W/"6f2a4fc298671fd8177e31c3f7e8ef42" expires: Wed, 24 Apr 2024 09:36:18 GMT last-modified: Wed, 24 Apr 2024 09:32:04 GMT warning: 214 UploadServer gunzipped x-guploader-response-body-transformations: gunzipped cdn-proxyver: 1.04 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 04/24/2024 09:33:35 cdn-edgestorageid: 1175 cdn-status: 200 cdn-requestid: e3561d9600c60e9ef25633a88a08bd0d cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	cdn2.vogel.de/scss/fonts/icons.woff	185.125.168.73	200 OK	68 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/icons.woff IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format, TrueType, length 67904, version 0.0 Size 68 kB (67904 bytes) Hash 05acfdb568b3df49ad31355b19495d4a e46819e863a46751d622c1190c4e8a83ebc20612 709f2789daaff440820ebb975d3ae409af45121bdec47e39e83523490b1bc0fc HTTP Headers `GET /scss/fonts/icons.woff HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: font/woff content-length: 67904 last-modified: Mon, 22 Apr 2024 16:15:06 GMT etag: "66268d0a-10940" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/icons.woff>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn2.vogel.de/scss/fonts/Glyphter.ttf	185.125.168.73	200 OK	14 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/Glyphter.ttf IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type TrueType Font data, 15 tables, 1st "GSUB", 18 names, Macintosh, Copyright (C) 2023 by original authors @ fontello.comglyphterRegularglyphterglyphterVersion 1.0g Size 14 kB (14236 bytes) Hash 5eb5b18c14bbfcba1b277d3ed314275d 0e5bd448a8e036bbc67bd94ce3704c62fb0e6c8b 48457b2e7399e43f83337f9e56eeb1f58284ce28320cf3db735df5c2426756a3 HTTP Headers `GET /scss/fonts/Glyphter.ttf HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:09 GMT content-type: application/octet-stream content-length: 14236 last-modified: Mon, 22 Apr 2024 16:15:06 GMT etag: "66268d0a-379c" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/Glyphter.ttf>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/whitelabel/logo-cp-light.svg	185.76.9.15	200 OK	662 B
URL GET HTTP/2 cdn.consentmanager.net/delivery/whitelabel/logo-cp-light.svg IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type SVG Scalable Vector Graphics image Size 662 B (662 bytes) Hash 751583e924de491d7418b422f2e637a7 c5b43498fdf25a2c9f0f1005d4260981a6410cfe 8f3b6bc3bccee02bf416bcff2e877e3def29dcef3f7727e12390d099897a3892 HTTP Headers `GET /delivery/whitelabel/logo-cp-light.svg HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: image/svg+xml vary: Accept-Encoding last-modified: Mon, 24 Apr 2023 16:47:29 GMT etag: W/"296-5fa17c3292a40" cache-control: max-age=31536000 expires: Sat, 15 Feb 2025 13:39:55 GMT edge-control: max-age=2592000 x-77-nzt: EwwBuUwJDQH3zmtZAAwBuUwKCQH3zwAAAAwBisclwQH3BQAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd228665508f91a x-accel-expires: @1739626795 x-accel-date: 1708091007 x-77-cache: HIT x-77-age: 5860514 content-encoding: gzip server: CDN77-Turbo x-cache: HIT x-age: 5860302 x-77-pop: stockholmSE X-Firefox-Spdy: h2

	cdn2.vogel.de/applications/8/img/logo_mini.svg	185.125.168.73	200 OK	15 kB
URL GET HTTP/2 cdn2.vogel.de/applications/8/img/logo_mini.svg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type SVG Scalable Vector Graphics image Size 15 kB (14799 bytes) Hash 09c759d31958fd8a19d20a43a6372b61 796a18a975afe5e10cdbce95532f4e216e933e5b 901a05c7638d765b67e03315d1ddc5ec0a6e50acac58708bafe7e5417a3db088 HTTP Headers `GET /applications/8/img/logo_mini.svg HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/svg+xml last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-39cf" cache-tag: 8 nginx p7f.vogel.de-8 content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/applications/8/img/logo_mini.svg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn2.vogel.de/img/vogel_logo.svg	185.125.168.73	200 OK	5.8 kB
URL GET HTTP/2 cdn2.vogel.de/img/vogel_logo.svg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type SVG Scalable Vector Graphics image Size 5.8 kB (5845 bytes) Hash d733967b9b308c40f954309787b0c14c 2dca93e43169be7667903ffb8a6f5bbf0a5a8215 a1b311d433dcd625e7e68972fd507d16623f4eaed54590a25ebe088f92ae457d HTTP Headers `GET /img/vogel_logo.svg HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/applications/8/scss/basic.css?v=1.040 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/svg+xml last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-16d5" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/img/vogel_logo.svg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/whitelabel/logo-cp-dark.svg	185.76.9.15	200 OK	662 B
URL GET HTTP/2 cdn.consentmanager.net/delivery/whitelabel/logo-cp-dark.svg IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type SVG Scalable Vector Graphics image Size 662 B (662 bytes) Hash 72906014b4f030d4e568a001a761dd15 d567c1951f460f7747e01ace81c1c5a50fa7f7b0 ec8a70ba7a74844a2f645dbeca3f0a0364e8b7a7c30fc04a35602cbfb64385bc HTTP Headers `GET /delivery/whitelabel/logo-cp-dark.svg HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: image/svg+xml vary: Accept-Encoding last-modified: Mon, 24 Apr 2023 16:47:29 GMT etag: W/"296-5fa17c3292a40" cache-control: max-age=31536000 expires: Sat, 15 Feb 2025 13:39:56 GMT edge-control: max-age=2592000 x-77-nzt: EwwBuUwJDQH3zmtZAAwBuUwKAQH3zwAAAAwBisclwQH3BAAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd22866ca82061b x-accel-expires: @1739626796 x-accel-date: 1708091007 x-77-cache: HIT x-77-age: 5860513 content-encoding: gzip server: CDN77-Turbo x-cache: HIT x-age: 5860302 x-77-pop: stockholmSE X-Firefox-Spdy: h2

	cdn2.vogel.de/applications/8/img/logo.svg	185.125.168.73	200 OK	7.0 kB
URL GET HTTP/2 cdn2.vogel.de/applications/8/img/logo.svg IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type SVG Scalable Vector Graphics image Size 7.0 kB (7044 bytes) Hash 14d76ffd99d8ffb03f9d0614c6bb9c46 21e2c60a25dd7d35d670bfb72371e8e5b868f2ce 6efd0deb3d6a7bc1f41fd9bf08db55354681f68165b4a7952069d7a14090152c HTTP Headers `GET /applications/8/img/logo.svg HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: image/svg+xml last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-1b84" cache-tag: 8 nginx p7f.vogel.de-8 content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/applications/8/img/logo.svg>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZW4uZF8xMzc3Ni54XzExLnYucC50XzEzNzc2Lnh0XzEx.js	185.76.9.15	200 OK	87 kB
URL GET HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZW4uZF8xMzc3Ni54XzExLnYucC50XzEzNzc2Lnh0XzEx.js IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type ASCII text, with very long lines (52934) Size 87 kB (87298 bytes) Hash 440889df35e6935e565ef45c7de54df1 16c81db04e4ec8528b20d3de7b7d2a0beba1e71d 5881353c957ce69b855c48bddf848bdf6a5f4cae59cd2471b9898483d835860a HTTP Headers `GET /delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZW4uZF8xMzc3Ni54XzExLnYucC50XzEzNzc2Lnh0XzEx.js HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding access-control-allow-origin: * x-xss-protection: 0 expires: Wed, 24 Apr 2024 09:37:10 GMT cache-control: public, max-age=1800 edge-control: public, max-age=1800 last-modified: Wed, 24 Apr 2024 09:07:10 GMT x-77-nzt: EwwBuUwJDQGTmBMAAAwBuUwKEwH3dAYAAAwBJRPCMQH3GwAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd22866ac8b150b x-accel-expires: @1713951430 x-accel-date: 1713946293 x-77-cache: HIT x-77-age: 6695 content-encoding: gzip server: CDN77-Turbo x-cache: EXPIRED x-age: 5016 x-77-pop: stockholmSE X-Firefox-Spdy: h2

	cdn.consentmanager.net/delivery/js/cmp_en.min.js	185.76.9.15	200 OK	430 kB
URL GET HTTP/2 cdn.consentmanager.net/delivery/js/cmp_en.min.js IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 430 kB (429865 bytes) Hash 525720332d19f4deaf7c560cf1601be8 47a9fac15c1d53dd2e66419f1bde9c3183216ff2 60e6ed03711cc95547c90e9cb619e569c8ad974cfe61b48904cc39f8404587d1 HTTP Headers `GET /delivery/js/cmp_en.min.js HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Tue, 23 Apr 2024 10:18:32 GMT etag: W/"68f29-616c0e03eae00" cache-control: max-age=86400 expires: Wed, 24 Apr 2024 10:19:25 GMT edge-control: max-age=86400 x-77-nzt: EgwBuUwJDQH3IEcBAAwBisclwQH3AAAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd2286630e61507 x-accel-expires: @1713953965 x-accel-date: 1713867565 x-77-cache: HIT x-77-age: 83744 content-encoding: gzip server: CDN77-Turbo x-cache: HIT x-age: 83744 x-77-pop: stockholmSE X-Firefox-Spdy: h2

	cp.security-insider.de/chunks/chunk-cmp-consentmanager.20240423095031-0ab9f2f096.a8c025237ac96a9273e5.js	146.59.69.202	200 OK	4.2 kB
URL GET HTTP/2 cp.security-insider.de/chunks/chunk-cmp-consentmanager.20240423095031-0ab9f2f096.a8c025237ac96a9273e5.js IP 146.59.69.202:443 ASN #16276 OVH SAS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcp.security-insider.de Fingerprint47:84:DE:AD:87:30:E0:19:9D:E9:6C:8A:D1:B7:A1:20:FB:4F:97:48 ValidityFri, 22 Mar 2024 10:09:15 GMT - Thu, 20 Jun 2024 10:09:14 GMT File type troff or preprocessor input, ASCII text, with very long lines (4346), with no line terminators Size 4.2 kB (4230 bytes) Hash d134bdbc76201ac854a34e3468ee7134 a367e08f551b7ba961174bea9be7c6ab13680606 8d36ddb1a74d6c1526b5a1ec0b8523c26ffdcaac3b0632edda66aa31024a595f HTTP Headers `GET /chunks/chunk-cmp-consentmanager.20240423095031-0ab9f2f096.a8c025237ac96a9273e5.js HTTP/1.1 Host: cp.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/javascript server: BunnyCDN-PL1-1175 cdn-pullzone: 1938543 cdn-uid: 9b8242a4-b3ec-45cc-97e6-8f0d6d325fb8 cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-expose-headers: * age: 1106 alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000 cache-control: public, max-age=604800 expires: Wed, 01 May 2024 03:59:35 GMT last-modified: Tue, 23 Apr 2024 10:18:44 GMT cdn-proxyver: 1.04 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 04/24/2024 06:36:14 cdn-edgestorageid: 1175 cdn-status: 200 cdn-requestid: 67c17bef5e9cba3f3dba44115c3a82ff cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-300.woff2	185.125.168.73	200 OK	99 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-300.woff2 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format (Version 2), TrueType, length 99228, version 1.0 Size 99 kB (99228 bytes) Hash 883380cdb55eb2aae4f1e19d4aa3d9ce b102b63068fcd6fadfa0ee7905c3755c45b7660f 87a93f788792f07f3fccc6639a72598add7555c1aee598825930c4dc01d6c874 HTTP Headers GET /scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-300.woff2 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:09 GMT content-type: font/woff2 last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-1839c" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-300.woff2>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	www.security-insider.de/android-chrome-192x192.png	81.173.115.24	200 OK	3.0 kB
URL GET HTTP/2 www.security-insider.de/android-chrome-192x192.png IP 81.173.115.24:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectsecurity-insider.de FingerprintD8:6C:91:1D:F4:92:83:65:2F:2C:7B:DB:96:4B:48:8D:57:19:DE:D5 ValidityMon, 01 Apr 2024 00:21:09 GMT - Sun, 30 Jun 2024 00:21:08 GMT File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced Size 3.0 kB (3010 bytes) Hash b924928b844e28be389b2da354d879cf b615b98a483c0782846d32eac872cb6f061ba543 2669d75f82568c44cd217110231f9d4765e1d8f011a6c61538a9807dcf2e85f7 HTTP Headers GET /android-chrome-192x192.png HTTP/1.1 Host: www.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17 Cookie: INFINITYWATCHER=52eaasvvag5oqes061u5t3ootq Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: James date: Wed, 24 Apr 2024 09:35:09 GMT content-type: image/png last-modified: Tue, 23 Apr 2024 14:32:29 GMT vary: Accept-Encoding etag: W/"6627c67d-bc2" expires: Fri, 26 Apr 2024 09:35:09 GMT cache-control: max-age=172800 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' cache-tag: nginx www.security-insider.de-icon content-encoding: gzip strict-transport-security: max-age=31536000; X-Firefox-Spdy: h2

	cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-500.woff2	185.125.168.73	200 OK	102 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-500.woff2 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format (Version 2), TrueType, length 102196, version 1.0 Size 102 kB (102196 bytes) Hash 6d1cd974abb9064a7d45e39fb2044974 db76f3ad1dd35eac98ad2074ae26a996e50be326 7bd28a3603bcc0aca687c8c8b626099e64a965bc538f0c0ea64ba3e013192ab1 HTTP Headers GET /scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-500.woff2 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:09 GMT content-type: font/woff2 last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-18f34" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-500.woff2>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	lgt0fv.security-insider.de/get/live/web/_/mlxb9w.js	217.160.200.101	200 OK	280 kB
URL GET HTTP/2 lgt0fv.security-insider.de/get/live/web/_/mlxb9w.js IP 217.160.200.101:443 ASN #8560 IONOS SE Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectlgt0fv.security-insider.de FingerprintD6:EB:85:E5:28:1F:E2:1A:04:8C:3D:E3:4D:BC:48:E6:0A:4D:AD:22 ValidityTue, 27 Feb 2024 03:01:20 GMT - Mon, 27 May 2024 03:01:19 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 280 kB (279671 bytes) Hash 32887d147503796872ef3c881ecf4fb6 54a2c5d565494b9d295c866bdba9ae07e410741c 9315ca0344ac14de6d433b8b3b492d227b3934134cbf82e5cd283ae9a66301f6 HTTP Headers `GET /get/live/web/_/mlxb9w.js HTTP/1.1 Host: lgt0fv.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: application/javascript; charset=utf-8 etag: W/"44477-VKLF1WVJS50pXIZr26muB+QQdBw" vary: Accept-Encoding content-encoding: gzip strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * expires: Wed, 24 Apr 2024 09:50:09 GMT cache-control: max-age=900, public X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZGUuZF8xMzc3Ni54XzExLnAudi50XzEzNzc2Lnh0XzEx.js	185.76.9.15	200 OK	94 kB
URL GET HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZGUuZF8xMzc3Ni54XzExLnAudi50XzEzNzc2Lnh0XzEx.js IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type ASCII text, with very long lines (52934) Size 94 kB (94265 bytes) Hash 5567201ab413cb777c836cd7f1d48087 cfc4fb7bc30bf20bf1660d65dabccdf4dfd6c916 e69c5df055cdbd52fc55dbf14c55badb0ddba2ba62b6aaaaaadf9b238466d408 HTTP Headers `GET /delivery/customdata/bV8xLndfMjg4NjEucl9HRFBSLmxfZGUuZF8xMzc3Ni54XzExLnAudi50XzEzNzc2Lnh0XzEx.js HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding access-control-allow-origin: * x-xss-protection: 0 expires: Wed, 24 Apr 2024 09:37:10 GMT cache-control: public, max-age=1800 edge-control: public, max-age=1800 last-modified: Wed, 24 Apr 2024 09:07:10 GMT x-77-nzt: EwwBuUwJDQGTlxMAAAwBuUwKDAH3cQYAAAwB1GY4EQH3HgAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd228661371b90f x-accel-expires: @1713951430 x-accel-date: 1713946294 x-77-cache: HIT x-77-age: 6694 content-encoding: gzip server: CDN77-Turbo x-cache: EXPIRED x-age: 5015 x-77-pop: stockholmSE X-Firefox-Spdy: h2

	www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17	81.173.115.24	200 OK	211 kB
URL User Request GET HTTP/2 www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17 IP 81.173.115.24:443 ASN #8560 IONOS SE Certificate IssuerLet's Encrypt Subjectsecurity-insider.de FingerprintD8:6C:91:1D:F4:92:83:65:2F:2C:7B:DB:96:4B:48:8D:57:19:DE:D5 ValidityMon, 01 Apr 2024 00:21:09 GMT - Sun, 30 Jun 2024 00:21:08 GMT File type Size 211 kB (210646 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17 HTTP/1.1 Host: www.security-insider.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://9ea5d63733c742c781ce83d1e77a2760.svc.dynamics.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: James date: Wed, 24 Apr 2024 09:35:08 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding set-cookie: INFINITYWATCHER=52eaasvvag5oqes061u5t3ootq; expires=Thu, 25-Apr-2024 09:35:07 GMT; Max-Age=86400; path=/; secure; HttpOnly; SameSite=Lax expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-white: 2289.12 x-from-cache: false x-content-type-options: nosniff x-xss-protection: 1; mode=block x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' cache-tag: nginx www.security-insider.de content-encoding: gzip strict-transport-security: max-age=31536000; X-Firefox-Spdy: h2

	cdn2.vogel.de/js/vendors/respiframe/jquery.responsiveiframe.js	185.125.168.73	200 OK	4.0 kB
URL GET HTTP/2 cdn2.vogel.de/js/vendors/respiframe/jquery.responsiveiframe.js IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type JavaScript source, ASCII text, with very long lines (4634), with no line terminators Size 4.0 kB (3969 bytes) Hash 3c39ee025d5d2c2204680c7ef5aaf09d 6fa0e68e43407d5e8397aa3d40cd4461c9cb8c4e bf1662f07bcfc2cc979574b4a6439bce78982cd60d096d14a6241dec5392cec4 HTTP Headers `GET /js/vendors/respiframe/jquery.responsiveiframe.js HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-f81" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/vendors/respiframe/jquery.responsiveiframe.js>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	b.delivery.consentmanager.net/delivery/cmp.php?id=28861cdid=dad7ce8852c7&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&&usedesign=13776&l=en&o=1713951308780	87.230.98.78	200 OK	7.3 kB
URL GET HTTP/2 b.delivery.consentmanager.net/delivery/cmp.php?id=28861cdid=dad7ce8852c7&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&&usedesign=13776&l=en&o=1713951308780 IP 87.230.98.78:443 ASN #61157 PlusServer GmbH Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectb.delivery.consentmanager.net FingerprintE5:E4:7C:F4:BD:BA:2E:90:3A:3F:BE:F0:A5:7B:B4:B2:F0:BF:0D:3A ValidityThu, 14 Mar 2024 00:37:25 GMT - Wed, 12 Jun 2024 00:37:24 GMT File type JavaScript source, ASCII text, with very long lines (7901), with no line terminators Size 7.3 kB (7260 bytes) Hash 589c4af7601b579bbd4309ee4149e695 46840834280accd8aaf72dff8cf6ce6885edfa5b 8d38230abdcdcce93edd09aa04fdd7016656ab994c98b58268f6801654d5da8b HTTP Headers GET /delivery/cmp.php?id=28861cdid=dad7ce8852c7&h=https%3A%2F%2Fwww.security-insider.de%2Fder-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313%2F%3Fcmp%3Dmail-ransomware-kw17%23msdynttrid%3Dy_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI&&usedesign=13776&l=en&o=1713951308780 HTTP/1.1 Host: b.delivery.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT cache-control: no-store, no-cache, must-revalidate edge-control: no-store, no-cache, must-revalidate expires: Thu, 01 Dec 1994 16:00:00 GMT pragma: no-cache access-control-allow-origin: * x-xss-protection: 0 last-modified: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.consentmanager.net/delivery/crossdomain.html	185.76.9.15	200 OK	2.1 kB
URL GET HTTP/2 cdn.consentmanager.net/delivery/crossdomain.html IP 185.76.9.15:443 ASN #60068 Datacamp Limited Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subject1376624012.rsc.cdn77.org FingerprintAF:BA:C5:36:2A:F9:83:4F:32:1A:8F:95:51:86:52:81:8F:51:7D:B8 ValiditySun, 14 Apr 2024 19:25:23 GMT - Sat, 13 Jul 2024 19:25:22 GMT File type HTML document, ASCII text, with very long lines (2287), with no line terminators Size 2.1 kB (2107 bytes) Hash 1197444c28050df1358ce58c5b2c5a04 6bc5c1c27085616f78af82e84f838f8c243b3f93 04e0de38109170e2167b05d501e76ab8514d6b836280c93eea2740dbfff4b397 HTTP Headers GET /delivery/crossdomain.html HTTP/1.1 Host: cdn.consentmanager.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Wed, 24 Apr 2024 09:35:09 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding last-modified: Thu, 29 Sep 2022 20:25:49 GMT etag: W/"83b-5e9d6aed4ad40" x-77-nzt: EwwBuUwJDQH3lQYAAAwBuUwKEwH3BgAAAAwBnJIhHwH3AQAAAA x-77-nzt-ray: c0a4cc2825b65cbe4dd2286603898d0f x-accel-expires: @1713953224 x-accel-date: 1713949624 x-77-cache: HIT x-77-age: 1692 content-encoding: gzip server: CDN77-Turbo x-cache: HIT x-age: 1685 x-77-pop: stockholmSE X-Firefox-Spdy: h2`

	cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-regular.woff2	185.125.168.73	200 OK	100 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-regular.woff2 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format (Version 2), TrueType, length 100244, version 1.0 Size 100 kB (100244 bytes) Hash 09585d2ae799b996246965b7b6d78884 31457089a10450f8def2f27358f7c6f1304f5bf6 026278c7710bfa14c94050760fb07fe8586e9ed6845219df06b5776e5bcd1267 HTTP Headers GET /scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-regular.woff2 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:09 GMT content-type: font/woff2 last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-18794" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/fira-sans/fira-sans-v16-latin_greek_cyrillic-regular.woff2>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn2.vogel.de/js/menu.js?v=1.0	185.125.168.73	200 OK	4.7 kB
URL GET HTTP/2 cdn2.vogel.de/js/menu.js?v=1.0 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type JavaScript source, ASCII text, with very long lines (5636), with no line terminators Size 4.7 kB (4666 bytes) Hash 3d8b5920c5fb930f90c3df41e84bb7fa afcbdaa20150eef3437355da65d0752d4ff2d76d 570f3637e3d1de2d48d3f987f86ac579b4068fb1de33f73e97f080a671c673ae HTTP Headers `GET /js/menu.js?v=1.0 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-123a" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/menu.js?v=1.0>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn2.vogel.de/js/custom.js?v=1.0	185.125.168.73	200 OK	40 kB
URL GET HTTP/2 cdn2.vogel.de/js/custom.js?v=1.0 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Size 40 kB (40308 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js/custom.js?v=1.0 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.security-insider.de/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: application/javascript last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-9d74" cache-tag: nginx p7f.vogel.de- content-encoding: gzip strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/js/custom.js?v=1.0>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

	cdn2.vogel.de/scss/fonts/Bitter-Variable/bitter.woff2	185.125.168.73	200 OK	31 kB
URL GET HTTP/2 cdn2.vogel.de/scss/fonts/Bitter-Variable/bitter.woff2 IP 185.125.168.73:443 ASN #56655 TerraHost AS Requested by https://www.security-insider.de/der-statusbericht-zur-globalen-ransomware-bedrohung-2023-d-65538d6d3e313/?cmp=mail-ransomware-kw17#msdynttrid=y_Tcjm3fjIOAyoHC1Rwiadv6wjRbk3dB7KXxHK0AdwI Certificate IssuerLet's Encrypt Subjectcdn2.vogel.de FingerprintAA:04:6C:98:5C:60:A9:AC:B1:3F:14:0B:D8:EF:D0:3B:A4:ED:5B:05 ValidityMon, 26 Feb 2024 05:20:01 GMT - Sun, 26 May 2024 05:20:00 GMT File type Web Open Font Format (Version 2), TrueType, length 30760, version 1.0 Size 31 kB (30760 bytes) Hash ecd72b459bd8ecf8ae0765fa83386304 c3cacb66b2b868a53b7cc4e63a8ed024bd6e1ec5 d2417376f4080d9fb44c603b2d08c70dbeafe00368dad803ca7194f5503e7fe7 HTTP Headers `GET /scss/fonts/Bitter-Variable/bitter.woff2 HTTP/1.1 Host: cdn2.vogel.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.security-insider.de DNT: 1 Connection: keep-alive Referer: https://cdn2.vogel.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: keycdn date: Wed, 24 Apr 2024 09:35:08 GMT content-type: font/woff2 last-modified: Mon, 22 Apr 2024 16:15:06 GMT vary: Accept-Encoding etag: W/"66268d0a-7828" cache-tag: nginx p7f.vogel.de- strict-transport-security: max-age=31536000; link: <https://p7f.vogel.de/files/beps/scss/fonts/Bitter-Variable/bitter.woff2>; rel="canonical" x-cache: HIT x-shield: active x-edge-location: noos access-control-allow-origin: * X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL