Overview

URL alemim.de/
IP138.201.204.45
ASNAS24940 Hetzner Online GmbH
Location Germany
Report completed2018-02-14 01:13:31 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-02-14 2 alemim.de/ Phishing
2018-02-14 2 www.alemim.de/ Phishing
2018-02-14 2 www.alemim.de/forum/clientscript/yui/yuiloader-dom-event/yuiloader-dom-even (...) Phishing
2018-02-14 2 www.alemim.de/forum/highslide/highslide-with-gallery.js Phishing
2018-02-14 2 www.alemim.de/forum/clientscript/vbulletin_md5.js?v=423 Phishing
2018-02-14 2 www.alemim.de/forum/clientscript/vbulletin_css/style00037l/additional.css?d (...) Phishing
2018-02-14 2 www.alemim.de/forum/highslide/highslide-with-gallery.js Phishing
2018-02-14 2 www.alemim.de/forum/clientscript/vbulletin_md5.js?v=423 Phishing
2018-02-14 2 www.alemim.de/forum/clientscript/vbulletin_css/style00037l/additional.css?d (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 138.201.204.45

Date UQ / IDS / BL URL IP
2018-08-21 12:27:11 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-08-21 11:27:28 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-08-20 15:30:22 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-08-19 11:43:00 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-08-14 21:55:51 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-08-10 14:32:07 +0200
0 - 2 - 0 werklijn.eu/ 138.201.204.45
2018-06-18 19:15:43 +0200
0 - 1 - 0 abdulvahitduman.be/ 138.201.204.45
2018-06-05 07:07:23 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-30 20:19:34 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-29 00:27:22 +0200
0 - 6 - 0 werklijn.eu/ 138.201.204.45

Last 10 reports on ASN: AS24940 Hetzner Online GmbH

Date UQ / IDS / BL URL IP
2018-08-22 01:59:22 +0200
0 - 0 - 11 www.sling32.ru/slingscat/clothes/home.php?ml4 (...) 46.4.125.179
2018-08-22 01:55:34 +0200
0 - 1 - 0 d2k1klldld.hut2.ru/ComponenteBradesco/ 138.201.122.249
2018-08-22 01:43:55 +0200
0 - 0 - 0 ac.dcit.ch/xerox/US_us/Open-Past-Due-Orders 85.10.197.7
2018-08-22 01:31:44 +0200
0 - 6 - 0 coom.kz/ 46.4.49.8
2018-08-22 01:28:02 +0200
0 - 0 - 13 ballonfahrten.com/ 138.201.4.203
2018-08-22 01:17:17 +0200
0 - 0 - 1 www.ezysl.com/eylsmc/de/index-uni.html 138.201.157.209
2018-08-22 01:12:45 +0200
0 - 0 - 11 crm.mentorfreight.co.za/ 88.198.151.99
2018-08-22 01:00:55 +0200
0 - 0 - 1 igor1910hostia.ru.s25.hhos.ru/api/gate.get?p1=0 188.40.73.26
2018-08-22 00:55:22 +0200
0 - 5 - 0 dl-host.tk/ 148.251.19.125
2018-08-22 00:48:08 +0200
0 - 0 - 0 newperk.macmyday.de.dedi38.your-server.de/wp- (...) 213.133.106.38

Last 10 reports on domain: alemim.de

Date UQ / IDS / BL URL IP
2018-06-05 07:07:23 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-30 20:19:34 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-26 07:19:35 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-25 18:19:23 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-25 03:19:37 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-23 23:19:24 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-23 18:19:30 +0200
0 - 0 - 8 alemim.de/ 138.201.204.45
2018-05-22 17:19:24 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45
2018-05-21 21:19:35 +0200
0 - 0 - 8 alemim.de/ 138.201.204.45
2018-05-20 03:19:34 +0200
0 - 0 - 9 alemim.de/ 138.201.204.45


JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 98, repeated: 1) - SHA256: 6c5c8893414d4a5c25b12ce0e90bf6b30e924eb19c144ce4c847e8c9b9af8204

                                        < script type = "text/javascript"
src = "clientscript/yui/connection/connection-min.js?v=423" > < /script>
                                    

#2 JavaScript::Write (size: 112, repeated: 1) - SHA256: 021fd4e857dd1b0b57f714162a03749f1a7dbd915eb88a02cb11e8a39c323ff6

                                        < script type = "text/javascript"
src = "clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=423" > < /script>
                                    


HTTP Transactions (34)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         138.201.204.45
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.alemim.de/
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: text/html; charset=ISO-8859-9
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 12890
Connection: keep-alive
X-Powered-By: PHP/5.5.38, PleskLin
Cache-Control: private
Pragma: private
Content-Encoding: gzip
Set-Cookie: bb_lastvisit=1518567569; expires=Thu, 14-Feb-2019 00:19:29 GMT; Max-Age=31536000; path=/ bb_lastactivity=0; expires=Thu, 14-Feb-2019 00:19:29 GMT; Max-Age=31536000; path=/


--- Additional Info ---
Magic:  gzip compressed data
Size:   12890
Md5:    04095bf1a0f9d9200e6459a5377255d0
Sha1:   01895778e47ed5c9d9cbf962d00e28ae3d3a8bbf
Sha256: e813ccc67389471a36cf15e86045f684442e73db60edbe68d38d264df5d17b33

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=423 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 61619
Last-Modified: Wed, 31 Aug 2016 19:10:58 GMT
Connection: keep-alive
Etag: "57c72bc2-f0b3"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   61619
Md5:    0061011aa28e2472d07d7bc7e0f179bd
Sha1:   315e9836288696569c93aa0a908d285b3f15d6a2
Sha256: fb0768b04af92d670757d4b1289d6745e27b474e4fb15eff5306d9e57226d9b2

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/favicon.ico HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 1086
Last-Modified: Wed, 31 Aug 2016 19:10:48 GMT
Connection: keep-alive
Etag: "57c72bb8-43e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1086
Md5:    c1f20852dd1caf078f49de77a2de8e3f
Sha1:   b14df98e3c5c5a237832f68c8e69ad5bcbac51ef
Sha256: bbd1fec17f8e92d37b13ae3157eacdbd5cb20327760a8f2c7d7e6f3a78beea85
                                        
                                            GET /forum/clientscript/yui/connection/connection-min.js?v=423 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 13257
Last-Modified: Wed, 31 Aug 2016 19:10:57 GMT
Connection: keep-alive
Etag: "57c72bc1-33c9"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   13257
Md5:    16109de6692eedf52681b60313226a22
Sha1:   34cae3b3e6bfd0fd42281ad988e5b564c6d35c22
Sha256: c1287adfc1c6761dcb4221e342113981bfcf6067e0f65adbf417674f5e83da4d
                                        
                                            GET /pagead/show_ads.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Wed, 14 Feb 2018 00:19:29 GMT
Expires: Wed, 14 Feb 2018 00:19:29 GMT
Cache-Control: private, max-age=3600
Etag: 16562696735356401637
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 20527
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   20527
Md5:    94771d66b2246c4e09ab4210b07584c3
Sha1:   0527daba5e27583cf7d77faac56a41ab95a6e4e3
Sha256: be73c86ba79854dc3ec39a81fa9584596e62f4d027a875c8a012e160d00f9c85
                                        
                                            GET /forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 68350
Last-Modified: Sat, 28 Dec 2013 06:07:23 GMT
Connection: keep-alive
Etag: "52be6a9b-10afe"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   68350
Md5:    ab7362cc7d986ffeee6ec3883b663278
Sha1:   5a26894ae8a17f982c9c77f2785cc56cf67091ab
Sha256: 4ae40357db80f83307fff818cac927b6daacee59effc8f4b43e08144a7d5018d
                                        
                                            GET /forum/highslide/highslide-with-gallery.js HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 239
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   239
Md5:    bd6662022249fbb8c0ecbeff10f18b0f
Sha1:   241287fc0e9968a9e2c13057e35653b26183f83f
Sha256: 572f46f26750a1f7aa7562cbf1e8555d42b4ce168f13d7d65189203e500364a3

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/highslide/highslide.css HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 227
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   227
Md5:    3ed5d5199a13e71866a058bfaf26d9a6
Sha1:   93a5d2d9782240158a0c4283ee29e9d56046d2f4
Sha256: 8e1c18973153e0d095a977810e99de123d0b2b1deb0f9b223362e89837d995a9
                                        
                                            GET /forum/clientscript/vbulletin_md5.js?v=423 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 5464
Last-Modified: Wed, 31 Aug 2016 19:10:52 GMT
Connection: keep-alive
Etag: "57c72bbc-1558"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   5464
Md5:    5197e6df4b7a32c54834cdc210c866cb
Sha1:   fa94d8ae90bd9a953934c4c4020718530aa8131c
Sha256: 6e4ed9f4271f22c3bb4405155731f16c131e71d4c752060017496c0bbd2d5c85

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/clientscript/vbulletin_css/style00037l/additional.css?d=1472671327 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 0
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 28 Dec 2013 06:07:23 GMT
Etag: "0-4ee92062b9cc0"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/clientscript/vbulletin-core.js?v=423 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:29 GMT
Content-Length: 51946
Last-Modified: Wed, 31 Aug 2016 19:10:52 GMT
Connection: keep-alive
Etag: "57c72bbc-caea"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines
Size:   51946
Md5:    cf213e7cefc7192c07ccf8271dff4f99
Sha1:   a4266310add4b29a417ca25ee3d268bf7c9bdc45
Sha256: 27344e67f21964ef0fe10b922baff5ccea4627e69c0b9320218ea6e110104c73
                                        
                                            GET /forum/images/misc/vbulletin4_logo.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 6265
Last-Modified: Wed, 31 Aug 2016 19:11:15 GMT
Connection: keep-alive
Etag: "57c72bd3-1879"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 155 x 45, 8-bit gray+alpha, non-interlaced
Size:   6265
Md5:    72d1a91514c0251de5d15b3f90a3cc08
Sha1:   5ad5b6022d316408b31ba8ed2ec92267776861fd
Sha256: a409c3b0ade0fb3fff86dcfc2d87dabb6baa996e6977b82ee9d87b6bef8d6076
                                        
                                            GET /forum/images/misc/navbit-home.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 241
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:15 GMT
Etag: "f1-53b62dc779689"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 12 x 12, 8-bit/color RGBA, non-interlaced
Size:   241
Md5:    7528111af2f88bfbc3edd48f35113f1b
Sha1:   49133613e28620be7d093172e191200f9f4b4494
Sha256: c85826f4126be1fbe84f09341f1c93e26c763854b672fc220374e3699e29390c
                                        
                                            GET /forum/highslide/highslide-with-gallery.js HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 239
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   239
Md5:    bd6662022249fbb8c0ecbeff10f18b0f
Sha1:   241287fc0e9968a9e2c13057e35653b26183f83f
Sha256: 572f46f26750a1f7aa7562cbf1e8555d42b4ce168f13d7d65189203e500364a3

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/cron.php?s=de28a691cc21b81dbc0481f6a8962474&rand=1518567569 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: text/html; charset=ISO-8859-9
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 12674
Connection: keep-alive
X-Powered-By: PHP/5.5.38, PleskLin
Cache-Control: private
Pragma: private
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data
Size:   12674
Md5:    31361890583448c429920a86f70d6035
Sha1:   452d3572e4aad4db8eece73ecfd534ddc7554e2a
Sha256: a459a1d7c7850fa2bd53f90aaeff16ea7882e05a8e2eb21e0874a9cc7f6cf297
                                        
                                            GET /forum/highslide/highslide.css HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 227
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   227
Md5:    3ed5d5199a13e71866a058bfaf26d9a6
Sha1:   93a5d2d9782240158a0c4283ee29e9d56046d2f4
Sha256: 8e1c18973153e0d095a977810e99de123d0b2b1deb0f9b223362e89837d995a9
                                        
                                            GET /forum/clientscript/vbulletin_md5.js?v=423 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0
If-Modified-Since: Wed, 31 Aug 2016 19:10:52 GMT
If-None-Match: "57c72bbc-1558"

                                         
                                         138.201.204.45
HTTP/1.1 304 Not Modified
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Last-Modified: Wed, 31 Aug 2016 19:10:52 GMT
Connection: keep-alive
Etag: "57c72bbc-1558"
X-Powered-By: PleskLin


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/clientscript/vbulletin_css/style00037l/additional.css?d=1472671327 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0
If-Modified-Since: Sat, 28 Dec 2013 06:07:23 GMT
If-None-Match: "0-4ee92062b9cc0"

                                         
                                         138.201.204.45
HTTP/1.1 304 Not Modified
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Connection: keep-alive
Etag: "0-4ee92062b9cc0"
X-Powered-By: PleskLin


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /forum/images/gradients/gradient-grey-down.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 182
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:13 GMT
Etag: "b6-53b62dc62ed75"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 64 x 64, 8-bit/color RGBA, non-interlaced
Size:   182
Md5:    d3f744e107651303e25d968044cb4068
Sha1:   efae84dca1f717ac066bc82981422b7ad08a679f
Sha256: eca5ac86fcc7f61309f8631b9467fc5229d1e31992faffd5a7aac0376a34ca5a
                                        
                                            GET /forum/images/buttons/search.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 211
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:12 GMT
Etag: "d3-53b62dc55d1fa"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 22 x 22, 8-bit/color RGBA, non-interlaced
Size:   211
Md5:    93c8e804b1bb933595ed131d388509ff
Sha1:   579407458ed8d358314989a71143488cc5d7bda1
Sha256: d960be83bbe3a3f674a200862b0d835a58d56a4b9cff2cbbdf6ac2360590ef00
                                        
                                            GET /forum/images/buttons/newbtn_middle.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 95
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:12 GMT
Etag: "5f-53b62dc533dd2"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 1 x 23, 8-bit/color RGBA, non-interlaced
Size:   95
Md5:    33ca028bbb58a07b46704608803a27bd
Sha1:   de35cd504516fdabecc3e9dc6e231173dd392719
Sha256: 577531aa6d543e84e0fb30a24563d72f46ccbfe3c78a6fcd462a503e2708a4ff
                                        
                                            GET /forum/images/gradients/selected-tab-gradient-with-top-alpha.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 212
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:13 GMT
Etag: "d4-53b62dc63a8f5"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 50 x 104, 8-bit/color RGBA, non-interlaced
Size:   212
Md5:    1a4be04413357daa94a34eb907882a12
Sha1:   964005419a7ea11db9c16702edfbdaf77d68c428
Sha256: 0241512023dd49e6173d626909e0ad05bfe27880ceb520314716414ed7076bf8
                                        
                                            GET /forum/images/gradients/generic_button.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 104
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:13 GMT
Etag: "68-53b62dc61b10d"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 2 x 14, 8-bit/color RGBA, non-interlaced
Size:   104
Md5:    4ffd757329d7b56ad5e10fff7e328475
Sha1:   d341b36ada4abb85e063c41585016b6c0f76a0ac
Sha256: 95bd9333692538a45adb4357c4ef0f9280e7290a41275d2b80928dd02c021ee0
                                        
                                            GET /forum/images/misc/black_downward_arrow.png HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/forum/clientscript/vbulletin_css/style00037l/main-rollup.css?d=1472671327
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:30 GMT
Content-Length: 135
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Wed, 31 Aug 2016 19:11:14 GMT
Etag: "87-53b62dc71ca28"
Accept-Ranges: bytes
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  PNG image, 18 x 21, 8-bit gray+alpha, non-interlaced
Size:   135
Md5:    d6517ceb413aedeefd69641af6cb91be
Sha1:   72920184eb7cbb0b6c03afb335a18f9434d5edbe
Sha256: 7e1c14caabc27a83ff5497a21e498e358595ee80ae0f1a63196813363cbaa5b0
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Feb 2018 00:19:30 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    4721d02412f67c1f02caed47f157c800
Sha1:   80b6935913676f3362d76f78551ec7e801b2d392
Sha256: 7ab0ae5cca58393577a221fbc3f2c3681f8dbbcf252db9df39425f9523ebbbd4
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Feb 2018 00:19:30 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Feb 2018 00:19:30 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    bace2189f5fa473d4f2d2df4e6800905
Sha1:   a6fe2c26fd999edc05e39d3e99f2b95c2108e637
Sha256: aad30b2e392bb65c49772337fc99b42b081da7ebbb7aa2c3aebefa02bb05b4f3
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Feb 2018 00:19:31 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e4ea2bd151edc0e33ae14ab390728b90
Sha1:   a98fc5a9c13608abf36aa812d3037e4d954a7b6c
Sha256: 84464ba018c914b7fc2d8a5cca39a8dcdaf0345e480bf8a32c287d76b41267f4
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1391
Content-Transfer-Encoding: binary
Cache-Control: max-age=510048, public, no-transform, must-revalidate
Last-Modified: Mon, 12 Feb 2018 21:56:01 GMT
Expires: Mon, 19 Feb 2018 21:56:01 GMT
Date: Wed, 14 Feb 2018 00:19:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1391
Md5:    dab664d03e303a7b1deba30189c57d23
Sha1:   1a87b2335fc304a7783b6f7ffdb5ff97367d30de
Sha256: a420898c491aa5011be91b1f128d5401a72f65f88f6db5db605abde5677fb03d
                                        
                                            GET /pub-config/r20160913/ca-pub-7243051006668978.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Tue, 13 Feb 2018 16:16:12 GMT
Expires: Wed, 14 Feb 2018 04:16:12 GMT
Last-Modified: Fri, 09 Feb 2018 23:26:25 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=43200
Age: 28998
Alt-Svc: hq="googleads.g.doubleclick.net:443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    21aea2dae0239adff4f9f063cdacfc76
Sha1:   ce64c497ac1dd86393da79e8cea239de113c1de7
Sha256: a59ee78166b8467dd7dd8c7acb03d8df7d16cf4a04f45c8558366df1c33b868f
                                        
                                            GET /adsid/integrator.js?domain=www.alemim.de HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 14 Feb 2018 00:19:31 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: hq="googleads.g.doubleclick.net:443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET /adsid/integrator.js?domain=www.alemim.de HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 14 Feb 2018 00:19:31 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: hq="googleads.g.doubleclick.net:443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET /forum/cron.php?s=de28a691cc21b81dbc0481f6a8962474&rand=1518567569 HTTP/1.1 
Host: www.alemim.de
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.alemim.de/
Cookie: bb_lastvisit=1518567569; bb_lastactivity=0

                                         
                                         138.201.204.45
HTTP/1.1 200 OK
Content-Type: text/html; charset=ISO-8859-9
                                        
Server: nginx
Date: Wed, 14 Feb 2018 00:19:31 GMT
Content-Length: 12676
Connection: keep-alive
X-Powered-By: PHP/5.5.38, PleskLin
Cache-Control: private
Pragma: private
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data
Size:   12676
Md5:    293cbebc3ebd2b55f2c2d5398561c845
Sha1:   530d11a92e027d7d2aeaa032ff550934fa8ada1e
Sha256: d32dfd7df4ef277d509004cc487fc566977aacc2eddb23f701a77f8caa51ccf1