Overview

URL phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html
IP208.67.20.79
ASNAS3257 Tinet SpA
Location United States
Report completed2019-03-24 03:09:05 CET
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-03-24 03:08:32 CET 1  104.20.208.59 Client IP ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CoinHive Mining Domain)
2019-03-24 03:08:49 CET 2 Client IP  Internal IP ET DNS Query for Suspicious .gr.com Domain (gr .com in DNS Lookup)
2019-03-24 03:08:50 CET 2 Client IP  Internal IP ET DNS Query for Suspicious .gr.com Domain (gr .com in DNS Lookup)


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-24 2 phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html Malware
2019-03-24 2 phpforums.org/extensions/pun_bbcode/scripts.js Malware
2019-03-24 2 coin-hive.com/lib/coinhive.min.js Malware
2019-03-24 2 coinhive.com/lib/coinhive.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 208.67.20.79

Date UQ / IDS / BL URL IP
2019-06-10 17:52:27 +0200
0 - 1 - 1 phpforums.org/topic25214-httpsmumybearcomprom (...) 208.67.20.79
2019-06-09 20:20:49 +0200
0 - 1 - 0 phpforums.org/topic25685-air-max-2018-sale-on (...) 208.67.20.79
2019-06-09 16:16:13 +0200
0 - 1 - 1 phpforums.org/post-29461-karmaplus-9ce81dd7a9 (...) 208.67.20.79
2019-06-09 15:34:42 +0200
1 - 2 - 1 phpforums.org/topic25268-top-5-android-develo (...) 208.67.20.79
2019-06-04 21:36:34 +0200
0 - 0 - 2 phpforums.org/forum7-chit-chat.html 208.67.20.79
2019-05-26 14:48:38 +0200
0 - 0 - 5 www.swishtalk.com/index.php 208.67.20.79
2019-05-25 20:45:47 +0200
0 - 0 - 6 swishtalk.com/-actionscript-help/55207-help-r (...) 208.67.20.79
2019-05-07 09:32:05 +0200
0 - 0 - 5 www.swishtalk.com/-updates-and-announcements/ (...) 208.67.20.79
2019-05-03 17:14:16 +0200
0 - 0 - 1 pdaphonehome.com/forums/attachments/ppc-6700- (...) 208.67.20.79
2019-04-25 19:49:51 +0200
0 - 0 - 5 www.swishtalk.com/index.php 208.67.20.79

Last 10 reports on ASN: AS3257 Tinet SpA

Date UQ / IDS / BL URL IP
2019-07-01 09:27:33 +0200
0 - 0 - 0 https://bit.ly/2KH6OCt 67.199.248.10
2019-07-01 05:45:03 +0200
0 - 0 - 0 j.mp/ 67.199.248.16
2019-07-01 03:51:24 +0200
0 - 0 - 0 https://bit.ly/2ZPZEiT 67.199.248.11
2019-06-30 21:12:15 +0200
0 - 0 - 0 www.shropshirestar.com 2.22.31.99
2019-06-30 19:25:18 +0200
2 - 6 - 0 https://bit.ly/2LpuhaK 67.199.248.10
2019-06-30 19:17:52 +0200
2 - 7 - 0 https://bit.ly/2YwCRrS 67.199.248.10
2019-06-30 16:40:57 +0200
0 - 0 - 0 https://bit.ly/2IXxYTB 67.199.248.11
2019-06-30 13:18:45 +0200
0 - 0 - 0 https://bit.ly/2UXJ4dR 67.199.248.10
2019-06-30 11:43:19 +0200
0 - 0 - 0 https://bitly.com/a/warning?hash=2Br89YQ&url= (...) 67.199.248.15
2019-06-30 09:57:41 +0200
0 - 0 - 0 https://grb.to/2RGMSjU 67.199.248.13

Last 10 reports on domain: phpforums.org

Date UQ / IDS / BL URL IP
2019-06-10 17:52:27 +0200
0 - 1 - 1 phpforums.org/topic25214-httpsmumybearcomprom (...) 208.67.20.79
2019-06-09 20:20:49 +0200
0 - 1 - 0 phpforums.org/topic25685-air-max-2018-sale-on (...) 208.67.20.79
2019-06-09 16:16:13 +0200
0 - 1 - 1 phpforums.org/post-29461-karmaplus-9ce81dd7a9 (...) 208.67.20.79
2019-06-09 15:34:42 +0200
1 - 2 - 1 phpforums.org/topic25268-top-5-android-develo (...) 208.67.20.79
2019-06-04 21:36:34 +0200
0 - 0 - 2 phpforums.org/forum7-chit-chat.html 208.67.20.79
2019-04-13 09:39:36 +0200
3 - 0 - 4 phpforums.org/topic24963-testlink-1916-instal (...) 208.67.20.79
2019-04-13 02:00:22 +0200
3 - 0 - 4 phpforums.org/topic28091-httpwwwgarcinialossw (...) 208.67.20.79
2019-04-02 06:07:25 +0200
3 - 0 - 3 phpforums.org/search.html 208.67.20.79
2019-03-20 23:33:54 +0100
3 - 4 - 4 phpforums.org/topic25257-pons-outduels-rondin (...) 208.67.20.79
2019-03-19 13:22:06 +0100
3 - 0 - 4 phpforums.org/topic6623-adidas-zx-flux-soldes (...) 208.67.20.79


JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 50, repeated: 1) - SHA256: a159fba70192ac78b6c2f2778c6c4bc68e31050419aa8c2174021188fc214b16

                                        < a href = "mailto:mail@phpforums.org" > Contact Us < /a>
                                    


HTTP Transactions (34)


Request Response
                                        
                                            GET /topic6904-adidas-zx-flux-kaufen-online.html HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
X-Powered-By: PHP/5.3.29
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Sun, 24 Mar 2019 02:08:31 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22043
Md5:    5d509fa5f58057daaf4ecc446125fa7d
Sha1:   3dd84aa7fa4cd79c61239e86f31b3e283468fe22
Sha256: c19b2d1e93a9df4c868493a733da2722b6f554530e0c3df8ab5572c90079a93e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /extensions/pun_bbcode/scripts.js HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:10 GMT
Content-Length: 567
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   567
Md5:    54fefc257780c4c58ae46b5692aa01d5
Sha1:   9407cab5052ecb2feec93e3b3286c8773523b30c
Sha256: a8e9453c5ac6112e3c28c0cee28df61ad5080763d782a1ab8a8114e21fe73334

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /extensions/pun_bbcode/styles.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:11 GMT
Content-Length: 224
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   224
Md5:    984bc77053fa5fb97af0917468f40351
Sha1:   97be011275d1e0dc3a352dd1e0cb28d718ab1e67
Sha256: 3377946abe025439f190a95984c42434433ebd968261b594c2bfc51575bf32b6
                                        
                                            GET /style/Copper/Copper.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:08 GMT
Content-Length: 8986
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8986
Md5:    44c2e97675c328ab2f3af1c4fc167a45
Sha1:   f2e36b2134921775ae7078d31d2e9cf2d2ec3053
Sha256: ebf16d6be0fc55703ccb8474504ee24139a3a4d8d9095e8e221f61e82a0f81dc
                                        
                                            GET /style/Copper/Copper_cs.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:08 GMT
Content-Length: 3399
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3399
Md5:    972eadcc66aad9d8d60efc3573786620
Sha1:   71586b473d2ac37eeeb9c633493a8ed2f4c357bc
Sha256: c8e9166eaafa6bab9fe4be8b200b2360e757a75dc5067dad7df5f8dd67d73007
                                        
                                            GET /extensions/pun_attachment/style/Oxygen/Oxygen.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:54 GMT
Content-Length: 305
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   305
Md5:    f3305a556243d425d318d65b4a560f9a
Sha1:   1c41bba3bd4c665752063ddc1deba05a4c3b4108
Sha256: ac8769616cb4c4c1f23328cd90cf370d71766ea4f92d8cb4b9054e0e72da2440
                                        
                                            GET /extensions/pun_attachment/style/Oxygen/Oxygen_cs.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:54 GMT
Content-Length: 226
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   226
Md5:    1381d098370fecbada8acc4467153696
Sha1:   92d17bcab78217e3c54987ad6eaac713cd4860b0
Sha256: 59cb5a259040057d7d1d96a4d993992c9ab83759b44c431afb04b6219dce8dc6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 20 Mar 2019 11:53:46 GMT
Etag: 2DB1C431217D71EEC208968E5AADD84A632B819C
X-OCSP-Responder-ID: mcdpcaocsp5
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=293722
Expires: Wed, 27 Mar 2019 11:43:54 GMT
Date: Sun, 24 Mar 2019 02:08:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b8a5c1be7afd31424a35336cb958268c
Sha1:   2db1c431217d71eec208968e5aadd84a632b819c
Sha256: 9fab8a6063e60f06ac88c55efdd0de2d8450dbcd7166efa5bfc37a0b5e006c90
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Mar 2019 23:19:13 GMT
Etag: 0861053B8CDE8B73281393714A17EE670AD5353C
X-OCSP-Responder-ID: mcdpcaocsp5
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=75652
Expires: Sun, 24 Mar 2019 23:09:24 GMT
Date: Sun, 24 Mar 2019 02:08:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    e8b7143ae3df54f76d9478727827a4e7
Sha1:   0861053b8cde8b73281393714a17ee670ad5353c
Sha256: d89511de185cf1d5fbd6a146580a887b65c2e98f33b7ddd988f3910d407a3f6d
                                        
                                            GET /extensions/pun_karma/styles.css HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:13 GMT
Content-Length: 251
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   251
Md5:    7f26d1596e84fe676e34f0b11ae2a2fc
Sha1:   c8db25956e1e88ccbeaf7cd10d7ec1deb82f5d68
Sha256: cb7c12c20a991d277d1df4ebb2118cad9ed08c2c8d4842a94b4381ac5b9bc416
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Mar 2019 23:19:13 GMT
Etag: 96669D3885A81C7CA4E86F0AA5BBC80F76195C71
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=75684
Expires: Sun, 24 Mar 2019 23:09:56 GMT
Date: Sun, 24 Mar 2019 02:08:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e6107de1283b3f7949fd6524e0ccf6eb
Sha1:   96669d3885a81c7ca4e86f0aa5bbc80f76195c71
Sha256: 01a2ad4a38a4209bb14cba646a276935a9768b4dcbdb7fcf751721668aa82c3a
                                        
                                            GET /extensions/pun_karma/icons/thumbs_up.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:31 GMT
Last-Modified: Fri, 23 Sep 2011 19:25:37 GMT
Content-Length: 578
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:31 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   578
Md5:    191c9b123d4d44da12a1233a4e6a6d40
Sha1:   d7b8afbe657d83697e1037df8a3e08a7ccd8d91c
Sha256: 62d7603cb9d960395c723dc648f63a9435fda57fdd2694c740409c27bde44d69
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coin-hive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         217.182.164.10
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 24 Mar 2019 02:08:32 GMT
Content-Length: 178
Connection: keep-alive
Location: https://coinhive.com/lib/coinhive.min.js


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/catalog/product/cache/1/small_image/215x249/9df78eab33525d08d6e5fb8d27136e95/a/f/af5777_1_hh.jpg HTTP/1.1 
Host: www.couponsaustria.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         209.99.40.223
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: Apache
ntCoent-Length: 271
Keep-Alive: timeout=5, max=127
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    1602f554c49123883d394899c75fec41
Sha1:   4ca585122027c04fc280f6e5a53400505426429a
Sha256: 89f8bba454536bf68956567534ee6894b8f1118f3b2300d059167319ac7dc499
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 20 Mar 2019 04:39:20 GMT
Etag: D051598FFDBD6A08D067E1C1ACBFF4D73CE22D07
X-OCSP-Responder-ID: mcdpcaocsp14
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=267625
Expires: Wed, 27 Mar 2019 04:28:57 GMT
Date: Sun, 24 Mar 2019 02:08:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e03a9823ea62feda475c77a42fe8d2fb
Sha1:   d051598ffdbd6a08d067e1c1acbff4d73ce22d07
Sha256: f7922f4bd33ce7b340e4f5f8038d51501192d74da90c7e359670822fd2b21391
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Mar 2019 23:19:13 GMT
Etag: 5E3A8340A9F002F7004046B7E4C6EBE1EEBAB925
X-OCSP-Responder-ID: mcdpcaocsp14
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=75600
Expires: Sun, 24 Mar 2019 23:08:32 GMT
Date: Sun, 24 Mar 2019 02:08:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    a1c08879a49a64c6912cbee6a3488f4b
Sha1:   5e3a8340a9f002f7004046b7e4c6ebe1eebab925
Sha256: cf543983b4d6ee229cf3b2b4f576ad34e73071d44a2349bf60632a909e6d07e9
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 24 Mar 2019 02:08:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dcf9417cb9b3ec9d913e2810a8455f39f1553393312; expires=Mon, 23-Mar-20 02:08:32 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:57:18 GMT
Etag: W/"5bc4809e-423b4"
Expires: Sun, 24 Mar 2019 10:08:32 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bc5190bdbb1428b-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /style/Copper/bg_body.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:04 GMT
Content-Length: 172
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 48 x 48
Size:   172
Md5:    a8a9843c35f0b094e2e2eff13e21e85f
Sha1:   45579c1fc6eab1372f6a7069b09d582487b7088c
Sha256: 32006d3a04cdd8e4151da623eb1c0d89d76898e6bddd1e845f6291b660729444
                                        
                                            GET /media/catalog/product/cache/1/small_image/215x249/9df78eab33525d08d6e5fb8d27136e95/a/f/af5777_1_hh.jpg HTTP/1.1 
Host: www.couponsaustria.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/topic6904-adidas-zx-flux-kaufen-online.html

                                         
                                         209.99.40.223
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: Apache
ntCoent-Length: 271
Keep-Alive: timeout=5, max=114
Connection: Keep-Alive
Cache-Control: private
Content-Encoding: gzip
Content-Length: 195


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   195
Md5:    5f62cb9ebed164866140c23a2d937b4b
Sha1:   7f7d394afcb1c707080a21f9d0a679ebf50fa3ce
Sha256: df7103af59b870846a48fb84091d754c1e6175e9efc7c370aa4280d4f538cddd
                                        
                                            GET /style/Copper/bg_brd_navlinks.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:05 GMT
Content-Length: 72
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 5
Size:   72
Md5:    4e2d265895e451b6dbae512ef43baa0b
Sha1:   29d5f34bd8b282c31d40c757a3c21a26e0053b42
Sha256: 94043a91564adbfe423191ea58468a8f6c0114636c7eb83880eeda3cabab5a1e
                                        
                                            GET /style/Copper/bg_ann_tr.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:04 GMT
Content-Length: 93
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 4
Size:   93
Md5:    20a29902633a90a8a3fda158ecc2dd41
Sha1:   5c7d28f4d581b7aa7870971e086f69b35e414833
Sha256: d3030a5e243414656182c6d3eba12fa452b89f90dc44f84a19d9ea6c7ddbbcf7
                                        
                                            GET /style/Copper/bg_ann_tl.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:04 GMT
Content-Length: 93
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 4
Size:   93
Md5:    3b34523278069005e9f675b1af75e009
Sha1:   e1821d61373659ef980ebff8f417a85e9498f37a
Sha256: 4c210eb36ad630d886a8bd2ddfc8079b5207162f52fcd9b8c8bd6a73311117f4
                                        
                                            GET /style/Copper/bg_brd_head.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:05 GMT
Content-Length: 437
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 100
Size:   437
Md5:    49c73a2ce157db8922d9a0c977f7f0e6
Sha1:   947a874a2bf2aaf6d35ee4ec10f2d6459544c691
Sha256: a10149e44b662e2a44a21f00c61eb7052e004e665508eddecc69fcdb6eb27a01
                                        
                                            GET /style/Copper/bg_ann_bl.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:03 GMT
Content-Length: 93
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 4
Size:   93
Md5:    a10ceb6ff002b5b9365df8c6d328637c
Sha1:   d680e47f4aad174d75ddbebd313019e5b8f26f6c
Sha256: 97ed985f9d9619f250cbfc99024f5988b1ba314d8e3fb924565d41539bbd84c2
                                        
                                            GET /style/Copper/feed-icon.png HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:08 GMT
Content-Length: 659
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   659
Md5:    db3e1832b5841d5883c018b1d348ad6d
Sha1:   318b5acb06c4f2275368024605835c1359583ef8
Sha256: 184f3c1da93bc08b523cb8e0cdc12a59752e496c2a1e160ea3c108105d09ce42
                                        
                                            GET /style/Copper/bg_brd_head_right.png HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:05 GMT
Content-Length: 15515
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 482 x 93, 8-bit/color RGB, non-interlaced
Size:   15515
Md5:    7cfff97db437dc6ac5a5a38445811c38
Sha1:   f010436dc975d3b8243300cd5132f02adc388793
Sha256: 3a1dc93ce3adcbd6ee0173a1a942eb8377af761e8f41e4ea219b12bc3028700e
                                        
                                            GET /style/Copper/bg_main_head_top.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:06 GMT
Content-Length: 46
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 2
Size:   46
Md5:    3fc914d688b24977f3bbf434b25d1aa3
Sha1:   09bed7fd779377310439f0b1b6d5925bc27e3569
Sha256: 668f17a6957bb94c8c39b423f8fe441e555c1029091fb83ecf00af861fa93659
                                        
                                            GET /style/Copper/bg_main_head_left.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:05 GMT
Content-Length: 252
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 8 x 100
Size:   252
Md5:    4d89799d951ac3fee0dc744ac8e302cd
Sha1:   a533083bf79652d4b6defcfa0be5d6de781b8dab
Sha256: ddff2deb05e756f320bbfef8d623517820da60ceb520686f0e91045ede46a5f0
                                        
                                            GET /style/Copper/bg_main_head_right.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:06 GMT
Content-Length: 244
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 8 x 100
Size:   244
Md5:    0dbdabb650de036d766b4b96850152d1
Sha1:   ff8fce3693d8e1f18d6e01ce6ea7b5229739402d
Sha256: 5b63a6b3d620acdbc2651e8890519df858cfbfa62740b02d1d3f4ebdf09f501e
                                        
                                            GET /style/Copper/offline.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:09 GMT
Content-Length: 329
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 20
Size:   329
Md5:    e34f96c06f4f32238393e13ff1a75867
Sha1:   9543b39596114424f4dba38ca008a3d2fb60e5d0
Sha256: 3ab8714075cf1621c55ab7bcde2e107c8c0433c340de1528d369d65c056d3669
                                        
                                            GET /style/Copper/online.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:09 GMT
Content-Length: 427
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 20
Size:   427
Md5:    0add738429bef8372fa1a6e033450c3d
Sha1:   0af07b5c81d36d01cb5be543fbeb5156ad48c3d6
Sha256: 3c1f96b407a756959b9d85f6358dbac613df34ae7fcad8b50581af28aa50cd2d
                                        
                                            GET /style/Copper/bg_brd_about_bottom.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:04 GMT
Content-Length: 57
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 4
Size:   57
Md5:    2710b7e5cc47c2b3552be30ef49e6e3c
Sha1:   0414abd75d9454b8138b116e6299afc697cae396
Sha256: 622808a539e01a2ac60fa4c1d6a6c92f2f17186438d5d8193d290c1db8c3b3cc
                                        
                                            GET /style/Copper/bg_brd_about.gif HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://phpforums.org/style/Copper/Copper_cs.css

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Fri, 23 Sep 2011 19:27:04 GMT
Content-Length: 81
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 8
Size:   81
Md5:    8be879096b07372870bfc8186101d469
Sha1:   6c8692fc487f86f7ff54682387507ed17204ed40
Sha256: 77a9240bffa01761e477395dae152abaaef2964038987f71e8e66749aa45bb4e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: phpforums.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         208.67.20.79
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Cache-Control: public, max-age=604800
Expires: Sun, 31 Mar 2019 02:08:32 GMT
Last-Modified: Mon, 15 Jun 2015 13:21:05 GMT
Content-Length: 894
Accept-Ranges: bytes
Date: Sun, 24 Mar 2019 02:08:32 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   894
Md5:    1140a5105df777a1c063360099c16470
Sha1:   233edb199c06d648f552c071a9427910e64b0dfb
Sha256: 83eeff105cd6d6897cf9ff250d41889e4cadf527c26b84526b177e014f5eb104