Overview

URL tintenmoers.de/dan
IP89.31.143.100
ASNAS15598 QSC AG
Location Germany
Report completed2019-01-20 11:19:47 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-20 2 tintenmoers.de/dan Phishing
2019-01-20 2 tintenmoers.de/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_ (...) Malware
2019-01-20 2 tintenmoers.de/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-ti (...) Malware
2019-01-20 2 tintenmoers.de/wp-content/plugins/tablepress/css/default.min.css?ver=1.9 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/magnific-popup/magnific-popup. (...) Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/style.css?ver=4.9.9 Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Malware
2019-01-20 2 tintenmoers.de/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-ti (...) Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/jquery/jquery.js?ver=1.12.4 Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/colormag-custom.js?ver=4.9.9 Malware
2019-01-20 2 tintenmoers.de/wp-content/plugins/eu-cookie-law/css/style.css?ver=4.9.9 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=4.1.2 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/navigation.js?ver=4.9.9 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/news-ticker/jquery.newsTicker. (...) Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/magnific-popup/image-popup-set (...) Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/magnific-popup/jquery.magnific (...) Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/js/fitvids/jquery.fitvids.js?ver= (...) Malware
2019-01-20 2 tintenmoers.de/wp-includes/js/wp-embed.min.js?ver=4.9.9 Malware
2019-01-20 2 tintenmoers.de/wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.0.5 Malware
2019-01-20 2 tintenmoers.de/wp-content/themes/colormag/fontawesome/fonts/fontawesome-web (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 89.31.143.100

Date UQ / IDS / BL URL IP
2019-06-10 12:27:29 +0200
0 - 0 - 4 www.chinafit.info/wp-login.php?redirect_to=ht (...) 89.31.143.100
2019-06-07 16:18:21 +0200
0 - 0 - 1 spine-alliance.com/wp-includes/aquiZSwrc2bVo/ (...) 89.31.143.100
2019-06-07 13:52:11 +0200
0 - 0 - 1 spine-alliance.com/wp-includes/aquiZSwrc2bVo/ (...) 89.31.143.100
2019-06-03 07:27:07 +0200
0 - 0 - 1 testskript.de/installerespacecontrole.zip 89.31.143.100
2019-06-03 07:27:05 +0200
0 - 0 - 1 skully.de/installerespacecontrole.zip 89.31.143.100
2019-05-26 07:53:19 +0200
0 - 0 - 1 testskript.de/installerespacecontrole.zip 89.31.143.100
2019-05-26 07:53:17 +0200
0 - 0 - 1 skully.de/installerespacecontrole.zip 89.31.143.100
2019-05-23 13:06:17 +0200
0 - 0 - 1 kidswing.de/c/photo.exe 89.31.143.100
2019-05-23 11:06:52 +0200
0 - 0 - 1 kidswing.de/c/photo.exe 89.31.143.100
2019-05-10 18:40:41 +0200
0 - 0 - 1 skully.de/installerespacecontrole.zip 89.31.143.100

Last 10 reports on ASN: AS15598 QSC AG

Date UQ / IDS / BL URL IP
2019-06-21 07:50:01 +0200
0 - 0 - 0 tor.cool 89.31.143.1
2019-06-19 12:19:44 +0200
0 - 0 - 0 moca.cargoline.de 62.146.3.211
2019-06-17 12:37:13 +0200
0 - 0 - 0 heidelberg-pharma.com 89.31.143.141
2019-06-14 19:10:37 +0200
0 - 0 - 0 auctiontech24.com 89.31.143.1
2019-06-10 12:27:29 +0200
0 - 0 - 4 www.chinafit.info/wp-login.php?redirect_to=ht (...) 89.31.143.100
2019-06-09 17:59:44 +0200
0 - 0 - 1 sciencess.com/m1soft 89.31.143.1
2019-06-09 16:10:05 +0200
0 - 0 - 1 think-left.com/post 89.31.143.1
2019-06-09 14:06:06 +0200
0 - 0 - 1 baby-glamour.de/oDVrTu2 89.31.143.1
2019-06-07 16:18:21 +0200
0 - 0 - 1 spine-alliance.com/wp-includes/aquiZSwrc2bVo/ (...) 89.31.143.100
2019-06-07 13:52:11 +0200
0 - 0 - 1 spine-alliance.com/wp-includes/aquiZSwrc2bVo/ (...) 89.31.143.100

No other reports on domain: tintenmoers.de



JavaScript

Executed Scripts (25)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (40)


Request Response
                                        
                                            GET /dan HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         89.31.143.100
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 20 Jan 2019 10:19:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd; path=/
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Link: <http://tintenmoers.de/wp-json/>; rel="https://api.w.org/"
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with very long lines
Size:   18700
Md5:    d7e9107a6e08d0080de990b85e10f1ec
Sha1:   71bbcc60c1e42f976edd36af2b2423cc5acfd145
Sha256: 70e6e125733e60636b3c660e75fc5e7640b653814a7446a4e3bf9c677277fc10

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:16 GMT
Content-Length: 12026
Connection: keep-alive
Last-Modified: Fri, 03 Aug 2018 03:38:24 GMT
Etag: "405ff3a8-2efa-5727fa8f1aa88"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   12026
Md5:    15d0c302dc74fd87bd9cfeab513e13e4
Sha1:   d25b738415c1594c4f840904bb876055d96cf256
Sha256: d2458b9fd9089fdcb9de317093e004ef3a65597dc68b9adfdeb15a7c9968d0d5
                                        
                                            GET /css?family=Open+Sans%3A400%2C600&ver=4.9.9 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 20 Jan 2019 10:19:17 GMT
Date: Sun, 20 Jan 2019 10:19:17 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   236
Md5:    eabf34cce5c86cb44c12d237317ed491
Sha1:   ece41c97ee2461235403bd0326752954a37f217e
Sha256: 3e038073341da09cfedf2d35bdc26e944ab0bb4c086739189ef0eda5b1cd0b1e
                                        
                                            GET /wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style_safe.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 2524
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:03 GMT
Etag: "c0a79440-9dc-57194e7ec3dd5"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   2524
Md5:    2a3da3118309517184584a3b8e368b3e
Sha1:   23c18f48bc0326b4352c18fb2e42bfe21692aa1b
Sha256: 6dea875bcf715762708b22345c64d7010b6863a209cd0de0f85949a08c2a23f6
                                        
                                            GET /wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 835
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:03 GMT
Etag: "c0a6ce50-343-57194e7ec1e95"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   835
Md5:    52f175a1776843091631444d9935a70e
Sha1:   957e767fe3f17085584f352e8e5bf33ba1fb279d
Sha256: d5378d2dc4b9540243989b8bc987106876fa56f392bdb0bdaf1e864b474a639f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 1901
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:04 GMT
Etag: "a1088eed-76d-57194e7f92e5d"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   1901
Md5:    934860b35a68f8a5a8675e952a644d5b
Sha1:   87ec5addb2ff8822fee3343ecc477641d16debe9
Sha256: 01b66a9f6c38297ba022f52ee90b55e272b82a55e3e27ac8a7ac7ff12e178365

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/fontawesome/css/font-awesome.css?ver=4.2.1 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 33233
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:19 GMT
Etag: "e1047429-81d1-5716f347c9d7c"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  troff or preprocessor input text
Size:   33233
Md5:    5343ee1a287a65ff20961476fd8a6188
Sha1:   b488600451227b445414796e9b8550e7c1bd6d29
Sha256: 082b0736a3408950e50fd65a090921003fe83d89ec6e3084549a01d5dfa9e854
                                        
                                            GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 5871
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:33:12 GMT
Etag: "3220b8-16ef-57194e4df982b"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII assembler program text, with very long lines, with no line terminators
Size:   5871
Md5:    17a42baaae8926c5f8df316b9a3db617
Sha1:   4cd76dc34f8e2f31952b99db1b3b29f404d2996c
Sha256: 760bc4d420605c167dd90147b0e0d82b4e761a18bc35be7aeffaa4192b371635

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/magnific-popup/magnific-popup.css?ver=20150310 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 7789
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:28 GMT
Etag: "81b2284b-1e6d-5716f350d1639"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   7789
Md5:    31001bbf717ff68857a56812c578f4a5
Sha1:   872c394183df582165bf73e36a1292aa24ff0012
Sha256: d166922c05a36bfca3bc5a366be935351848c9bb75e348aeda537fad6d4b8d59

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui.min.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 30747
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:04 GMT
Etag: "a1088eec-781b-57194e7f90f1d"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   30747
Md5:    3adf4ed2170ab45516be51d5892d7b17
Sha1:   473a0f69d8595d77d0a7c021c6ff3f138ad888de
Sha256: 68a9725fb911ecdf110dd53686a7d9db17f812d414cc669568b54e1e018aac3e
                                        
                                            GET /wp-content/themes/colormag/style.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 56202
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:26:26 GMT
Etag: "c09f57cf-db8a-5716f14b6badd"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   56202
Md5:    61269bfdeaf851e2693e28ca2a117586
Sha1:   3902741b74577284bc82f0d47ce3b3f73a369fa6
Sha256: 89bb9e1382a0b01691c4cb979c977e3cf83d1966f490d7fd226e446645975df3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 10056
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:26:51 GMT
Etag: "61049c1a-2748-5716f16315552"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 66572
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:03 GMT
Etag: "377750-1040c-57194e7f04517"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   66572
Md5:    89f456d56936c9b80bbf4cd42348239a
Sha1:   88f54fc5e1fdeaf8d31a5404e65f44785b3a18c9
Sha256: a6f0b86922d0d70ba1564a6d140b2126bfebf42412dd9fbe24dbe4d11ebf0269
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 4000
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:31:18 GMT
Etag: "80da26ce-fa0-57194de0f9d52"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   4000
Md5:    9ce4e157448487d4efe0ca538f656a71
Sha1:   45d22de723a97ca19cddd4fb792e339b5fab5c50
Sha256: 936567bc744e199e02bfc3c33fe2bc9c862999e0d479e2a694aa7485460a3960

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 41441
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:34:04 GMT
Etag: "a10dfccc-a1e1-57194e7f94d9d"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   41441
Md5:    201f58e190a203a5b26049fb91d2549b
Sha1:   ec560ff349423a738ff5bedd03de869726359c93
Sha256: 810ce27978ca0fce486dba60e25f0676e21a829b78a1449045868368b77ef2c2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 97184
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:26:52 GMT
Etag: "612279d0-17ba0-5716f164327c5"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   97184
Md5:    8610f03fe77640dee8c4cc924e060f12
Sha1:   076524186dbbdd4c41afbbd6b260d9e46a095811
Sha256: fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 36508
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:31:18 GMT
Etag: "80d7bbef-8e9c-57194de12ba33"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   36508
Md5:    cfb63dc18fde53fef4d4fdc19ddfdcd6
Sha1:   07e1e6f3160f3f3539f2ac7ceb69c7686c2051f9
Sha256: fe5d09013cdf89dd17c511c908bee2628e4c0f9b4550f802fdb1fd5086999c8d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/colormag-custom.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 591
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:32:29 GMT
Etag: "80ce7083-24f-5716f2a5a65e6"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   591
Md5:    99d4f412f31cd42240318028d3f98261
Sha1:   1801757e27a7ea2500fdee29490329b824b3b061
Sha256: 5ac1f5cfa145b4a1fa4a9840573938418f56dd164f063d623ad2e6dbe4e4ab4e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/eu-cookie-law/css/style.css?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 3699
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:48:29 GMT
Etag: "c0eb80ac-e73-571951b81621e"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   3699
Md5:    ee50d75624117dc06c3de63b2fa5f447
Sha1:   0ff587a670e78b7dc8a50b15859d0aaf41a22687
Sha256: e4d95c8c18f88a5e9fb28ebabb034f88f48a439bf512d0bdff78161efd302811

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/jquery.bxslider.min.js?ver=4.1.2 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 19359
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:32:29 GMT
Etag: "80cdf1e3-4b9f-5716f2a5a0827"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   19359
Md5:    697d69a48e5356f7106e38c09f7f19e0
Sha1:   b57160771fa597a5b56c5b12756c693e4829be07
Sha256: bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 10987
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:31:18 GMT
Etag: "80da2fbf-2aeb-57194de140253"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   10987
Md5:    9408efe2ce5a6b4364f34cbda02f814b
Sha1:   fe0826b06cbbcada150d3ae5f8fd258e0b1bbb0d
Sha256: 08e0d913aadaef201fd3200ca49fa991a2d8d02b3d9a54621123d71837bbc73f
                                        
                                            GET /wp-content/themes/colormag/js/colormag-slider-setting.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 386
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:32:29 GMT
Etag: "80cee0cd-182-5716f2a5e0f64"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   386
Md5:    99d5531955db6f297d5bd9377dff072e
Sha1:   1af441c6bbe1152785908db97d53bcba94977136
Sha256: 73dd7927daf6aa1d231ae9052d420324fe292d32484593f6ea462803e1100e96
                                        
                                            GET /wp-content/themes/colormag/js/navigation.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 1805
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:32:29 GMT
Etag: "80cedee2-70d-5716f2a5b5fe6"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text
Size:   1805
Md5:    9a0a4c85f8b81054e93ce9339b27c0d2
Sha1:   55cfc768cc10c7787cf1f129d3c3af127603a741
Sha256: d3e9d9e94bc4d8fbcc5cd8a4dd9c09b269a515d42c8a5e7b9fbb0f397a06515a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/news-ticker/ticker-setting.js?ver=20150304 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 265
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:30 GMT
Etag: "c0cbe159-109-5716f351e2d44"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   265
Md5:    e69b9112213615742fd67029c693ed5b
Sha1:   31120a804000b3d6308bb2d7432868cfc24a84fa
Sha256: e780d4db6bb0d2c3e6704b8fd12327dd8f496a595ebc746ff4aec93e0284a77d
                                        
                                            GET /wp-content/themes/colormag/js/news-ticker/jquery.newsTicker.min.js?ver=1.0.0 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 3667
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:30 GMT
Etag: "c0cbe15e-e53-5716f35204085"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   3667
Md5:    2b557629805727774afe6ec2c53bd65a
Sha1:   3991122312ca449bf0c32727ebf873bd2063e642
Sha256: d8dc6a157ad70bfed83a655e508234cf8f9b136d56fea918d05216338f314e6f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 3148
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:31:18 GMT
Etag: "80eb8ff2-c4c-57194de14cd73"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   3148
Md5:    82835a8960ddd73020389dbfa45c39a0
Sha1:   a54b01fc7de31d8068f61177d840125bb9ce011e
Sha256: 88b0379349a4dda6ebcc43c5bd12084d230c6105a6fd3c2f651c4e771b3eabef

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/06/cropped-tintenmoers-006.jpg HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 98137
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:31:34 GMT
Etag: "807b59ae-17f59-5716f2713a68b"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   98137
Md5:    c70442a2dc949a4465b0bcaf03d5a184
Sha1:   ee88b52031dd2a8f6b19a7d351c4a251217dca3e
Sha256: 0c99c5e394d59bad5bd36929fcef752e0ac49d8467b3641336bd3578cb827d64
                                        
                                            GET /wp-content/themes/colormag/js/magnific-popup/image-popup-setting.js?ver=20150310 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 138
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:29 GMT
Etag: "81b2284f-8a-5716f35134ffd"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   138
Md5:    2a41cbeafb177e2055b38716ade82ddb
Sha1:   c9b7b32006aa5510794f043b38c47df68f77fd56
Sha256: ad6627646a81bca057fec0548a335d919f0dcf58a85176181bf5760e5ddfd69d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/magnific-popup/jquery.magnific-popup.min.js?ver=20150310 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 21143
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:29 GMT
Etag: "81b22846-5297-5716f350eeafa"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   21143
Md5:    be3333626c57af03599abcb59b325e09
Sha1:   3824067348f6485d6b07d3a43660804e3731b21a
Sha256: ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/fitvids/jquery.fitvids.js?ver=20150311 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 3240
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:30 GMT
Etag: "e1049340-ca8-5716f352495e8"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text
Size:   3240
Md5:    4862c3f30420198f2c5456271e280425
Sha1:   efe071a42afc35a4ed953bd56cab72db8bb87d8d
Sha256: 9f541bd7e952b7302372186b170fd43c1f640b22405ce7d73df8a389c41bd95b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/colormag/js/fitvids/fitvids-setting.js?ver=20150311 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 105
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:30 GMT
Etag: "e1049376-69-5716f35266aa9"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C program text
Size:   105
Md5:    8a0836afd084c75ccffd66f919d3c4ae
Sha1:   8be00f9ec88387bca595760e8659d652e2337b34
Sha256: a9abdafa153fc0d8c58649df57d366d9ddaea13edcab12677e997ba2d9cfc4bc
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.9.9 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 1403
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 03:07:38 GMT
Etag: "405a179b-57b-57cde9df7408c"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1403
Md5:    2dce40d16f9ff6332d3cbb7ae488a2b9
Sha1:   0a8eca5975f21a9f1bc079d111ca1657009dbe8f
Sha256: 2152557cac69e2bd7d6debef5037a9f554f9209cc305b8141b3329acb10c42b7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.0.5 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 2960
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:48:29 GMT
Etag: "206803d2-b90-571951b83e2bf"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   2960
Md5:    a0bc4eea01f3428c10fc2663b588b6db
Sha1:   c4125719ab59795ea51c552a6c3e73b570940066
Sha256: b2777b2136591370735374104618934a186d85121cf3fc7dd8cabeaa9d19ecd8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A400%2C600&ver=4.9.9
Origin: http://tintenmoers.de

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17704
Date: Fri, 18 Jan 2019 16:24:27 GMT
Expires: Sat, 18 Jan 2020 16:24:27 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 150890


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A400%2C600&ver=4.9.9
Origin: http://tintenmoers.de

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18296
Date: Wed, 19 Dec 2018 20:30:31 GMT
Expires: Thu, 19 Dec 2019 20:30:31 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2728126


--- Additional Info ---
Magic:  data
Size:   18296
Md5:    1cd5320f8937d337b61d5117cf9d7b28
Sha1:   24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
Sha256: e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
                                        
                                            GET /wp-content/uploads/2016/06/cropped-Logo-tintenstation-maasmechelen-small2-1-192x192.png HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 41035
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:31:30 GMT
Etag: "8028c13d-a04b-5716f26d93d81"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  PNG image, 192 x 192, 8-bit/color RGBA, non-interlaced
Size:   41035
Md5:    c2d9dfa9bebdef77fad5fa473c18e74d
Sha1:   1bfb1fe5d42c1862d2317db910f2b81afaebaa0a
Sha256: 350e60b250d1408fe9cf62826573b9322ba4247dfb38e5d7d4524331725e9b75
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/dan
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 6908
Connection: keep-alive
Last-Modified: Sun, 22 Jul 2018 11:31:18 GMT
Etag: "80ebede1-1afc-57194de103992"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   6908
Md5:    8cf7f36bbd79bc0664b6113f7a7837fe
Sha1:   ede1f6fe3d18a0685b30c6d465686de7870f578f
Sha256: 38a448e9e03a9f64e7611b19af4bb8ec97fde2c708dc57ebbc7701be7ae3af08
                                        
                                            GET /wp-content/themes/colormag/fontawesome/fonts/fontawesome-webfont.woff?v=4.5.0 HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tintenmoers.de/wp-content/themes/colormag/fontawesome/css/font-awesome.css?ver=4.2.1
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Sun, 20 Jan 2019 10:19:17 GMT
Content-Length: 83588
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:35:26 GMT
Etag: "57a6fdb-14684-5716f34e3f2de"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  data
Size:   83588
Md5:    a35720c2fed2c7f043bc7e4ffb45e073
Sha1:   4a313eb93b959cc4154c684b915b0a31ddb68d84
Sha256: c812ddc9e475d3e65d68a6b3b589ce598a2a5babb7afc55477d59215c4a38a40

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/06/cropped-Logo-tintenstation-maasmechelen-small2-1-32x32.png HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         89.31.143.100
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 20 Jan 2019 10:19:20 GMT
Content-Length: 2084
Connection: keep-alive
Last-Modified: Fri, 20 Jul 2018 14:31:28 GMT
Etag: "801818f7-824-5716f26bc012f"
Accept-Ranges: bytes
Server: UD Webspace 3.0


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   2084
Md5:    7bbec66268cd404d73650da22a21010f
Sha1:   7531df977aa0f2f502750676f2c41a038e4e4385
Sha256: 3b4ec825749b3d192a687fd1ef71cb4947d7fd064d38151de3562a0665803b1d
                                        
                                            GET /wp-content/uploads/2016/06/cropped-Logo-tintenstation-maasmechelen-small2-1-32x32.png HTTP/1.1 
Host: tintenmoers.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=6tgot94b3646bibhojh5h3rev8uvi8sd

                                         
                                         0.0.0.0
                                        


--- Additional Info ---