83497b2441f943be364174f57bcc01ace64d0703671c8adcd2fed331c5894b3a

Analysis

max time kernel
148s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
21/07/2024, 17:21 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

60bb8a30e31bc8591f16f3036a25db87_JaffaCakes118.html
Size

30KB
MD5

60bb8a30e31bc8591f16f3036a25db87
SHA1

886388940fe81b74bdf0121a5d067f04452607d5
SHA256

83497b2441f943be364174f57bcc01ace64d0703671c8adcd2fed331c5894b3a
SHA512

6811a419c986a0f75572bf8f3ce9201160b816537e2f0d679a53c3a4cdcfbed5aa10969238136bd6764303e017958dbf9226e97518f68718b35fa0c13acdf289
SSDEEP

768:SbSbFYvb7Y5ubDsDkAJ2dDFiN1YwJot8Lt/pZPk:SbbQ5usDk5jm1f/fM

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
1416	msedge.exe
1416	msedge.exe
720	msedge.exe
720	msedge.exe
1612	identity_helper.exe
1612	identity_helper.exe
444	msedge.exe
444	msedge.exe
444	msedge.exe
444	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs

pid	Process
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe
720	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 720 wrote to memory of 1160	720	msedge.exe	84
PID 720 wrote to memory of 1160	720	msedge.exe	84
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 3576	720	msedge.exe	85
PID 720 wrote to memory of 1416	720	msedge.exe	86
PID 720 wrote to memory of 1416	720	msedge.exe	86
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87
PID 720 wrote to memory of 1616	720	msedge.exe	87

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\60bb8a30e31bc8591f16f3036a25db87_JaffaCakes118.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb32c246f8,0x7ffb32c24708,0x7ffb32c24718
  2⤵
  PID:1160
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2132 /prefetch:2
  2⤵
  PID:3576
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2232 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2764 /prefetch:8
  2⤵
  PID:1616
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3248 /prefetch:1
  2⤵
  PID:2880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3260 /prefetch:1
  2⤵
  PID:1816
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5636 /prefetch:8
  2⤵
  PID:4948
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5636 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1612
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
  2⤵
  PID:916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5028 /prefetch:1
  2⤵
  PID:3744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
  2⤵
  PID:4072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4868 /prefetch:1
  2⤵
  PID:3244
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,17490566456311843792,5280782426384014335,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2040 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:444

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:5092

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3728

Network

DNS

www.mkweer.at

msedge.exe

Remote address:

8.8.8.8:53

Request

www.mkweer.at

IN A

Response

www.mkweer.at

IN A

81.19.159.10
GET

http://www.mkweer.at/media/system/js/mootools.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/mootools.js HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/media/system/js/mootools.js
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/printButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/printButton.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:26 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/printButton.png
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/emailButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/emailButton.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/emailButton.png
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/printButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/printButton.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/printButton.png
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/media/system/js/caption.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/caption.js HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/media/system/js/caption.js
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/media/system/js/caption.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/caption.js HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:26 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/media/system/js/caption.js
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/system/css/general.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/general.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/system/css/general.css
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/script.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/script.js HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/script.js
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/system/css/system.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/system.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/system/css/system.css
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/pdf_button.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/pdf_button.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:26 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/pdf_button.png
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/system/css/system.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/system.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/system/css/system.css
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/pdf_button.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/pdf_button.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/pdf_button.png
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/script.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/script.js HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/script.js
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/css/template.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/css/template.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/css/template.css
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/css/template.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/css/template.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/css/template.css
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/system/css/general.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/general.css HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/system/css/general.css
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
DNS

22.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.160.190.20.in-addr.arpa

IN PTR

Response
DNS

10.159.19.81.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.159.19.81.in-addr.arpa

IN PTR

Response

10.159.19.81.in-addr.arpa

IN PTR

www10sni world4youcom
DNS

228.249.119.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

228.249.119.40.in-addr.arpa

IN PTR

Response
DNS

24.58.20.217.in-addr.arpa

Remote address:

8.8.8.8:53

Request

24.58.20.217.in-addr.arpa

IN PTR

Response
DNS

mkweer.at

msedge.exe

Remote address:

8.8.8.8:53

Request

mkweer.at

IN A

Response

mkweer.at

IN A

81.19.159.10
GET

http://mkweer.at/templates/jaw023/css/template.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/css/template.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/system/css/general.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/general.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/system/css/system.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/system.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/script.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/script.js HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/media/system/js/caption.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/caption.js HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/media/system/js/mootools.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/mootools.js HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:24 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
DNS

88.156.103.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

88.156.103.20.in-addr.arpa

IN PTR

Response
GET

http://mkweer.at/templates/jaw023/images/pdf_button.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/pdf_button.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:27 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/media/system/js/caption.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /media/system/js/caption.js HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:27 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/images/printButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/printButton.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:27 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/images/emailButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/emailButton.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/system/css/system.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/system.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/system/css/general.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/system/css/general.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/css/template.css

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/css/template.css HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/script.js

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/script.js HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://www.mkweer.at/templates/jaw023/images/emailButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/emailButton.png HTTP/1.1
Host: www.mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sun, 21 Jul 2024 17:21:33 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mkweer.at/templates/jaw023/images/emailButton.png
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
DNS

ajax.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN A

Response

ajax.googleapis.com

IN A

142.250.200.42
GET

http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js

msedge.exe

Remote address:

142.250.200.42:80

Request

GET /ajax/libs/jquery/1.6.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 32245
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 18 Jul 2024 23:04:22 GMT
Expires: Fri, 18 Jul 2025 23:04:22 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 238631
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
DNS

42.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

42.200.250.142.in-addr.arpa

IN PTR

Response

42.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f101e100net
GET

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/images/pdf_button.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/pdf_button.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/images/printButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/printButton.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET

http://mkweer.at/templates/jaw023/images/emailButton.png

msedge.exe

Remote address:

81.19.159.10:80

Request

GET /templates/jaw023/images/emailButton.png HTTP/1.1
Host: mkweer.at
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Date: Sun, 21 Jul 2024 17:21:36 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mkweer.at/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
DNS

241.150.49.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.150.49.20.in-addr.arpa

IN PTR

Response
DNS

api.twitter.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.twitter.com

IN A

Response

api.twitter.com

IN CNAME

tpop-api.twitter.com

tpop-api.twitter.com

IN A

104.244.42.2

tpop-api.twitter.com

IN A

104.244.42.66

tpop-api.twitter.com

IN A

104.244.42.130

tpop-api.twitter.com

IN A

104.244.42.194
GET

http://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

msedge.exe

Remote address:

104.244.42.2:80

Request

GET /1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339 HTTP/1.1
Host: api.twitter.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

location: https://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339
x-connection-hash: 1954051e885bbd0fe85bf75379b8c0fa9ddc2919753e123c03f8fc5729c10c51
date: Sun, 21 Jul 2024 17:21:38 GMT
server: tsa_f
content-length: 0
GET

https://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

msedge.exe

Remote address:

104.244.42.2:443

Request

GET /1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339 HTTP/2.0
host: api.twitter.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 410

date: Sun, 21 Jul 2024 17:21:39 UTC
perf: 7402827104
server: tsa_f
set-cookie: guest_id=v1%3A172158249933848385; Max-Age=34214400; Expires=Thu, 21 Aug 2025 17:21:39 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, max-age=0
x-transaction-id: e906cde774dbc531
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 198
x-response-time: 105
x-connection-hash: cadd98a424f061b60cefaec7028c7aaa4c861894a5e2e18254144ea743fd71a4
DNS

2.42.244.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.42.244.104.in-addr.arpa

IN PTR

Response
DNS

157.123.68.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.123.68.40.in-addr.arpa

IN PTR

Response
DNS

15.164.165.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

15.164.165.52.in-addr.arpa

IN PTR

Response
DNS

147.142.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

147.142.123.92.in-addr.arpa

IN PTR

Response

147.142.123.92.in-addr.arpa

IN PTR

a92-123-142-147deploystaticakamaitechnologiescom
DNS

81.144.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

81.144.22.2.in-addr.arpa

IN PTR

Response

81.144.22.2.in-addr.arpa

IN PTR

a2-22-144-81deploystaticakamaitechnologiescom
DNS

55.36.223.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

55.36.223.20.in-addr.arpa

IN PTR

Response
DNS

tse1.mm.bing.net

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.28.10

ax-0001.ax-msedge.net

IN A

150.171.27.10
GET

https://tse1.mm.bing.net/th?id=OADD2.10239340418577_1YCPJO6YBYEE06VWA&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239340418577_1YCPJO6YBYEE06VWA&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 500661
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7BDC344426984739AB9D4EEABB37EC64 Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317301233_1DW93FPGEP2PWMOD7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239317301233_1DW93FPGEP2PWMOD7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 575788
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 09A6272BB5B2454580144C4D8237AC61 Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317301642_146AN3TCLR6376QGX&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239317301642_146AN3TCLR6376QGX&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 944920
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FAE21E2C7C3448B2A98E48508702904D Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317301113_1JN5SDQBM09J1FJBH&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239317301113_1JN5SDQBM09J1FJBH&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 518597
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 66ABCC8FCBFE47B5A01EF71E50E5B1E3 Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239317301546_1Q2R62QH97KH2KYXT&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239317301546_1Q2R62QH97KH2KYXT&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 753716
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BB1A5FBE3D4449B49041620554B55E96 Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239340418578_1AMTWIX1RFG5EZ1V6&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

150.171.28.10:443

Request

GET /th?id=OADD2.10239340418578_1AMTWIX1RFG5EZ1V6&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 1061732
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6EA35D8E545B49CEB41F54D6AEC356E2 Ref B: LON04EDGE0922 Ref C: 2024-07-21T17:23:02Z
date: Sun, 21 Jul 2024 17:23:02 GMT

81.19.159.10:80

http://www.mkweer.at/templates/jaw023/images/printButton.png

http

msedge.exe

2.1kB
2.2kB
14
15

HTTP Request

GET http://www.mkweer.at/media/system/js/mootools.js

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/printButton.png

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/emailButton.png

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/printButton.png

HTTP Response

301
81.19.159.10:80

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

http

msedge.exe

2.0kB
2.3kB
13
15

HTTP Request

GET http://www.mkweer.at/media/system/js/caption.js

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/media/system/js/caption.js

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

HTTP Response

301
81.19.159.10:80

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

http

msedge.exe

1.5kB
1.8kB
9
13

HTTP Request

GET http://www.mkweer.at/templates/system/css/general.css

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/script.js

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

HTTP Response

301
81.19.159.10:80

http://www.mkweer.at/templates/jaw023/images/pdf_button.png

http

msedge.exe

2.0kB
2.2kB
12
15

HTTP Request

GET http://www.mkweer.at/templates/system/css/system.css

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/pdf_button.png

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/system/css/system.css

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/pdf_button.png

HTTP Response

301
81.19.159.10:80

http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

http

msedge.exe

1.6kB
1.8kB
11
12

HTTP Request

GET http://www.mkweer.at/templates/jaw023/script.js

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/jaw023/css/template.css

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

HTTP Response

301
81.19.159.10:80

http://www.mkweer.at/templates/system/css/general.css

http

msedge.exe

1.1kB
1.2kB
10
10

HTTP Request

GET http://www.mkweer.at/templates/jaw023/css/template.css

HTTP Response

301

HTTP Request

GET http://www.mkweer.at/templates/system/css/general.css

HTTP Response

301
81.19.159.10:80

http://mkweer.at/templates/jaw023/css/template.css

http

msedge.exe

1.4kB
27.2kB
22
23

HTTP Request

GET http://mkweer.at/templates/jaw023/css/template.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/system/css/general.css

http

msedge.exe

1.3kB
27.2kB
21
23

HTTP Request

GET http://mkweer.at/templates/system/css/general.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/system/css/system.css

http

msedge.exe

1.3kB
25.2kB
21
20

HTTP Request

GET http://mkweer.at/templates/system/css/system.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/script.js

http

msedge.exe

1.2kB
22.9kB
19
20

HTTP Request

GET http://mkweer.at/templates/jaw023/script.js

HTTP Response

404
81.19.159.10:80

http://mkweer.at/media/system/js/caption.js

http

msedge.exe

1.3kB
24.1kB
21
20

HTTP Request

GET http://mkweer.at/media/system/js/caption.js

HTTP Response

404
81.19.159.10:80

http://mkweer.at/media/system/js/mootools.js

http

msedge.exe

1.7kB
38.2kB
30
32

HTTP Request

GET http://mkweer.at/media/system/js/mootools.js

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/pdf_button.png

http

msedge.exe

1.4kB
31.4kB
23
25

HTTP Request

GET http://mkweer.at/templates/jaw023/images/pdf_button.png

HTTP Response

404
81.19.159.10:80

http://mkweer.at/media/system/js/caption.js

http

msedge.exe

1.1kB
19.6kB
18
16

HTTP Request

GET http://mkweer.at/media/system/js/caption.js

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/printButton.png

http

msedge.exe

1.3kB
27.1kB
20
22

HTTP Request

GET http://mkweer.at/templates/jaw023/images/printButton.png

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/emailButton.png

http

msedge.exe

1.6kB
22.9kB
18
19

HTTP Request

GET http://mkweer.at/templates/jaw023/images/emailButton.png

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/system/css/system.css

http

msedge.exe

1.3kB
27.2kB
22
24

HTTP Request

GET http://mkweer.at/templates/system/css/system.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/system/css/general.css

http

msedge.exe

1.1kB
22.9kB
17
19

HTTP Request

GET http://mkweer.at/templates/system/css/general.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/css/template.css

http

msedge.exe

1.3kB
27.2kB
21
23

HTTP Request

GET http://mkweer.at/templates/jaw023/css/template.css

HTTP Response

404
81.19.159.10:80

http://mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg

http

msedge.exe

1.4kB
27.2kB
21
23

HTTP Request

GET http://mkweer.at/images/stories/fuerbeitraege/2009-08-05_21-25-54kl.jpg

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/script.js

http

msedge.exe

1.4kB
31.4kB
24
25

HTTP Request

GET http://mkweer.at/templates/jaw023/script.js

HTTP Response

404
81.19.159.10:80

http://www.mkweer.at/templates/jaw023/images/emailButton.png

http

msedge.exe

613 B
657 B
5
6

HTTP Request

GET http://www.mkweer.at/templates/jaw023/images/emailButton.png

HTTP Response

301
142.250.200.42:80

http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js

http

msedge.exe

1.2kB
34.4kB
19
30

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js

HTTP Response

200
81.19.159.10:80

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

http

msedge.exe

1.3kB
22.9kB
18
20

HTTP Request

GET http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_geschaenk.jpg

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/pdf_button.png

http

msedge.exe

1.3kB
27.2kB
21
23

HTTP Request

GET http://mkweer.at/templates/jaw023/images/pdf_button.png

HTTP Response

404
81.19.159.10:80

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

http

msedge.exe

1.4kB
27.2kB
21
23

HTTP Request

GET http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_solisten1.jpg

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/printButton.png

http

msedge.exe

1.4kB
27.2kB
22
24

HTTP Request

GET http://mkweer.at/templates/jaw023/images/printButton.png

HTTP Response

404
81.19.159.10:80

http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

http

msedge.exe

1.5kB
31.4kB
24
26

HTTP Request

GET http://mkweer.at/images/stories/fuerbeitraege/2012/Fruehjahrskonzert/beitrag_fjk_2012_klaus.jpg

HTTP Response

404
81.19.159.10:80

http://mkweer.at/templates/jaw023/images/emailButton.png

http

msedge.exe

1.3kB
22.9kB
20
20

HTTP Request

GET http://mkweer.at/templates/jaw023/images/emailButton.png

HTTP Response

404
104.244.42.2:80

http://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

http

msedge.exe

657 B
547 B
6
5

HTTP Request

GET http://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

HTTP Response

301
104.244.42.2:443

https://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

tls, http2

msedge.exe

1.5kB
5.1kB
11
11

HTTP Request

GET https://api.twitter.com/1/trends/daily.json?callback=jQuery16203669026269155675_1721582493590&_=1721582498339

HTTP Response

410
150.171.28.10:443

https://tse1.mm.bing.net/th?id=OADD2.10239340418578_1AMTWIX1RFG5EZ1V6&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

tls, http2

153.0kB
4.5MB
3270
3263

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239340418577_1YCPJO6YBYEE06VWA&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317301233_1DW93FPGEP2PWMOD7&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317301642_146AN3TCLR6376QGX&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317301113_1JN5SDQBM09J1FJBH&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239317301546_1Q2R62QH97KH2KYXT&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239340418578_1AMTWIX1RFG5EZ1V6&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Response

200
150.171.28.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.28.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.28.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13
150.171.28.10:443

tse1.mm.bing.net

tls, http2

1.2kB
6.9kB
15
13

8.8.8.8:53

www.mkweer.at

dns

msedge.exe

59 B
75 B
1
1

DNS Request

www.mkweer.at

DNS Response

81.19.159.10
8.8.8.8:53

22.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

22.160.190.20.in-addr.arpa
8.8.8.8:53

10.159.19.81.in-addr.arpa

dns

71 B
107 B
1
1

DNS Request

10.159.19.81.in-addr.arpa
8.8.8.8:53

228.249.119.40.in-addr.arpa

dns

73 B
159 B
1
1

DNS Request

228.249.119.40.in-addr.arpa
8.8.8.8:53

24.58.20.217.in-addr.arpa

dns

71 B
131 B
1
1

DNS Request

24.58.20.217.in-addr.arpa
8.8.8.8:53

mkweer.at

dns

msedge.exe

55 B
71 B
1
1

DNS Request

mkweer.at

DNS Response

81.19.159.10
8.8.8.8:53

88.156.103.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

88.156.103.20.in-addr.arpa
224.0.0.251:5353

msedge.exe

397 B
6
8.8.8.8:53

ajax.googleapis.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

ajax.googleapis.com

DNS Response

142.250.200.42
8.8.8.8:53

42.200.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

42.200.250.142.in-addr.arpa
8.8.8.8:53

241.150.49.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

241.150.49.20.in-addr.arpa
8.8.8.8:53

api.twitter.com

dns

msedge.exe

61 B
148 B
1
1

DNS Request

api.twitter.com

DNS Response

104.244.42.2

104.244.42.66

104.244.42.130

104.244.42.194
8.8.8.8:53

2.42.244.104.in-addr.arpa

dns

71 B
71 B
1
1

DNS Request

2.42.244.104.in-addr.arpa
8.8.8.8:53

157.123.68.40.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

157.123.68.40.in-addr.arpa
8.8.8.8:53

15.164.165.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

15.164.165.52.in-addr.arpa
8.8.8.8:53

147.142.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

147.142.123.92.in-addr.arpa
8.8.8.8:53

81.144.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

81.144.22.2.in-addr.arpa
8.8.8.8:53

55.36.223.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

55.36.223.20.in-addr.arpa
8.8.8.8:53

tse1.mm.bing.net

dns

62 B
170 B
1
1

DNS Request

tse1.mm.bing.net

DNS Response

150.171.28.10

150.171.27.10

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
eaaad45aced1889a90a8aa4c39f92659

SHA1
5c0130d9e8d1a64c97924090d9a5258b8a31b83c

SHA256
5e3237f26b6047f64459cd5d3a6bc3563e2642b98d75b97011c93e0a9bd26f3b

SHA512
0db1c6bdb51f4e6ba5ef4dc12fc73886e599ab28f1eec5d943110bc3d856401ca31c05baa9026dd441b69f3de92307eb77d93f089ba6e2b84eea6e93982620e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
3ee50fb26a9d3f096c47ff8696c24321

SHA1
a8c83e798d2a8b31fec0820560525e80dfa4fe66

SHA256
d80ec29cb17280af0c7522b30a80ffa19d1e786c0b09accfe3234b967d23eb6f

SHA512
479c0d2b76850aa79b58f9e0a8ba5773bd8909d915b98c2e9dc3a95c0ac18d7741b2ee571df695c0305598d89651c7aef2ff7c2fedb8b6a6aa30057ecfc872c5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
183B

MD5
de8c81fed615e5ca2fda8b8a5766ef20

SHA1
404f8c3e7b591f727e2bd20c21e96b977f7aa064

SHA256
b6596916ef931c2e7697a166bdfa2fba1e421c6cfd6b25dd4a8fe6112ce1458b

SHA512
dcd98555b91b7d8ca70a442f48a5d5b822fd9164633281c53e0dea33c72d8cda9105ba5db62975fa1019509369eda107b689e9e854c8880a795bd42ea6de8057

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
7732335f8d167dc0faad52d5dfa8befe

SHA1
a796ee8434e6b28583632cc0edf7a6cafbfc6f77

SHA256
4e1e5c417609ced20be1ebb5e4cbb8e5f73d77d483af36cabad678dfd7262c0b

SHA512
0191c361fb39a5ae8da775ba0d691dd49da298ac8d2fa8fce100be15e1a35923d5da3c02541141f506e12d357c308505a1cccb3168715d4d3fdb511de43b4152

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
0870aa52af9b72e9a5f941159a5af625

SHA1
c8bf09c519f1ee4b82128a5afc6050115e032d22

SHA256
908a32213509f29ff513b9b838b6a09689bdd393f4b65213955f800f8a8148a9

SHA512
e08f02b526b4884076d68c7dc681332360f4bfe2d0c30ac5638f23039b3e9eaa2b5ccfe05134367714cde94e08e30150e72dd4b66bd8a7a001107a1b69668e3d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
1bc889d41d0b4d8f45208734bd118ab4

SHA1
54b1df3d368821e2aab3471c615a6bc0aea26fc8

SHA256
2a21059cd24e9ccf4ae881dbad19df89364e47d64d7f4ebc3a2b8c2c591ca863

SHA512
a35d1b9bdc1ff9d1b20366e069bb6ed9b7f743349b59fad02755f62f693beea876176f71ae49010cc391ac122fe3a951e1de1b132ea450c0d8494201c6f934f2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\f700e0c8-cd0b-4375-9f69-d048f5cb7809.tmp

Filesize
10KB

MD5
50d2824e22d202f7dfb833f54e41f692

SHA1
c655068ec382c695767d224440e9dc522615a43e

SHA256
1f05af441de769bab031f3846d7de10b7410064d0a11a8519352f62981c38ec5

SHA512
083377012a0f56c37b209b77f3480c80de7abf2de74e3d81518e5fc465f311db06c35bb0112ed7e8267bc23a6442bbace7456dc65cc9180228b7de84305b82cd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request