r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15089
Expires: Wed, 25 Jan 2023 12:57:07 GMT
Date: Wed, 25 Jan 2023 08:45:38 GMT
Connection: keep-alive
www.a26blm.eu/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
date: Wed, 25 Jan 2023 08:45:38 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
x-redirect-by: WordPress
location: https://www.a26blm.eu/
x-iplb-request-id: 5B5A2A9A:234E_36245B3E:0050_63D0EC32_1B8F4:1EA50
x-iplb-instance: 38232
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8167
Expires: Wed, 25 Jan 2023 11:01:45 GMT
Date: Wed, 25 Jan 2023 08:45:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 08:42:47 GMT
content-type: application/json
age: 171
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Wed, 25 Jan 2023 11:51:04 GMT
Date: Wed, 25 Jan 2023 08:45:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ytQ3QnvrvvDGcVdN3TJT/zrUPRKpRVOrneIYGxuhBPbz59kFM5XErus7uxUznwSRph7MNm3e8DM=
x-amz-request-id: 8TXP4A0ZYBJ9RYV4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 08:19:36 GMT
age: 1562
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 08:45:38 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 10399fdead51f923401953141a61953c
06c75a70adc9c0e96ce97284ffcabb5558a3f22a
db567440443d0f362fba6d291600db95588796d64437ba708854b1167d660c23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB567440443D0F362FBA6D291600DB95588796D64437BA708854B1167D660C23"
Last-Modified: Tue, 24 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 25 Jan 2023 14:45:39 GMT
Date: Wed, 25 Jan 2023 08:45:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 08:41:40 GMT
age: 239
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17103
Expires: Wed, 25 Jan 2023 13:30:42 GMT
Date: Wed, 25 Jan 2023 08:45:39 GMT
Connection: keep-alive
www.a26blm.eu/wp-content/plugins/contact-form-7/includes/css/styles.css
200 OK 972 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/contact-form-7/includes/css/styles.css
IP
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 972
server: Apache
last-modified: Wed, 19 Oct 2022 14:10:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-includes/css/dist/block-library/style.min.css
200 OK 12 kB URL HTTP/2 www.a26blm.eu/wp-includes/css/dist/block-library/style.min.css
IP
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 11681
server: Apache
last-modified: Wed, 19 Oct 2022 13:56:02 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/pressapps-knowledge-base/public/css/pressapps-knowledge-base-public.css
200 OK 1.6 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/pressapps-knowledge-base/public/css/pressapps-knowledge-base-public.css
IP
File type ASCII text, with very long lines (5716)
Hash e7988addbcf50035ac5fad5b4aeec721
daa7526602039de0ea3f77c6b50241b41a047ca9
ef247271caec04e236a935b73d2fe228d34e5e9747a315e884864237c7c9e7b7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/pressapps-knowledge-base/public/css/pressapps-knowledge-base-public.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 1630
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/
200 OK 12 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash c84704c38f5b4399c60b8a3e1924a4ba
cbf3857901f6c9182937428eed44ee95d1225ef1
dc587874ba11e57248385a79280c554430de2e0be765749e637839d9fdc2c2ab
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.4
set-cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.a26blm.eu/wp-json/>; rel="https://api.w.org/", <https://www.a26blm.eu/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://www.a26blm.eu/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/tooltipster.bundle.min.css
200 OK 1.1 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/tooltipster.bundle.min.css
IP
File type ASCII text, with very long lines (6495), with no line terminators
Hash 6501556badae2fbfffbb7f15725c9a01
2e9285eb2a3ebfe8b84097e25a6181c70ea39b39
53469cd3cad4d3b46ce9883afd1ae4adac27f68e302906eb8e178da317d94067
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/tooltipster.bundle.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 1115
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/revslider/public/assets/css/rs6.css
200 OK 12 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/revslider/public/assets/css/rs6.css
IP
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash cc16cf73aa75efedc8ce30504424257f
3ecac027453afbe9d74d9b488458ec610085c099
cebdd3e65a73a44140e181b820469fd4825430e6df35feb42258b51392228ff2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 12089
server: Apache
last-modified: Wed, 19 Oct 2022 14:26:55 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css
200 OK 320 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css
IP
File type ASCII text, with very long lines (1782), with no line terminators
Hash 87a1896f7549a3e71a2da10070ae9fb6
ce4c96f5472face376a22343a7517dc94728ead8
1daab7896221e2999b2ecf1c540367f539b3153e85c2769d6f2803cb53762883
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-light.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 320
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css
200 OK 285 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css
IP
File type ASCII text, with very long lines (1324), with no line terminators
Hash fe8f219ef19cb7e904e357193e0f66f7
4b065bf820dd5a5785377b24e0d3da898cec8eab
bf6b908db92fe5b86ecf6b2d112fc10570b40285f31c161300a16cc46c04ad99
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 285
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-punk.min.css
200 OK 231 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-punk.min.css
IP
File type ASCII text, with very long lines (825), with no line terminators
Hash ba5c1a24c21ed6dd0813b966235f5ba7
23bc2e7ea23382d012e91428666c1b20dc238eb6
82c45e633bc3489446e7d9667ec2f4abfc4162ab60fd3814c3cd948a0ae32114
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-punk.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 231
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-shadow.min.css
200 OK 329 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-shadow.min.css
IP
File type ASCII text, with very long lines (1684), with no line terminators
Hash 7ba8c1a9dc71ca8e230d6ba280de63be
f154d97d65fcaee8a2c30cc8d02c9ca46a844936
922215f29cfac13231e0a9720dd019b86658b48f2adb0c16f715048dfc7f2229
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-shadow.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 329
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/css/sol.css
200 OK 1.4 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/css/sol.css
IP
Hash 30ddb664cc1a7bae15d2d7fc5f574154
867f6cc133a149c6c95bf8270dfebbfc703ca54f
111b57b457df4f3153698aace29ca27e7547c7df70cb1053c4234dea3aab61c1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/css/sol.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 1410
server: Apache
last-modified: Wed, 19 Oct 2022 08:57:00 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/images/text-left.png
200 OK 1.5 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/text-left.png
IP
File type PNG image data, 12 x 155, 8-bit/color RGBA, non-interlaced\012- data
Hash e7e557e80c0cfbc4a59e1e267dcb1ce9
1898ddd72d8f1e67dcf31b75a63f2994bf2f2526
2c4178aff5e839c93c91bb71d5c60dd497ba3c27bea1d66bd7c13216af2e514a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/text-left.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 1521
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:27 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/images/text-right.png
200 OK 3.0 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/text-right.png
IP
File type PNG image data, 11 x 198, 8-bit/color RGBA, interlaced\012- data
Hash 2cbb7cc2d8b72211a3074be6a475d9c1
d7d746acb5803ae3a4a2168ae2e4ee1f50e5a9e8
0b084d6610e4723991f78f132e7353ba3c319434227ba6282d21154488a0bef1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/text-right.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 2967
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2018/11/cropped-A26BLM_CMJN.png
200 OK 3.9 kB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2018/11/cropped-A26BLM_CMJN.png
IP
File type PNG image data, 112 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash 2db1053d3264de125a29cf6cb18cac3d
3915394d9ff02f01958e7de627aea40e19d2dbb6
b396f4cd839144f8f84fdc4937c60a66c81cfe082f7bc92acc49950bb112ab33
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2018/11/cropped-A26BLM_CMJN.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 3871
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:46 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/css/slick.css
200 OK 605 B URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/css/slick.css
IP
Hash 193c33ad7ee6d859578c58245874eda6
a45e86d203995f405dfbd350872c1938d7d59a93
fa7e76b95886bce41f86917b3f2944a4b49b190e478a0f5a0036502dc0382453
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/css/slick.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 605
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:33 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/css/wp-wiki-tooltip.css
200 OK 243 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/css/wp-wiki-tooltip.css
IP
File type ASCII text, with CRLF line terminators
Hash 09be0ca8bc6af23a7b95fa24ac13b799
ed10f694756fcddd7d3e1e73b489f5fd3ffbc2bd
5da97f1268bf48b0a5b2750a15bca85cbfc13250696613c8bfa9c6be20dda235
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/css/wp-wiki-tooltip.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 243
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/js/wp-wiki-tooltip.js
200 OK 1.8 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/js/wp-wiki-tooltip.js
IP
File type ASCII text, with CRLF line terminators
Hash 060d34ea73fc06815dc59289416e6dc8
c5c81c7fffb7f3b515777eeedd59f975fdeba20e
284266ff19f853b729effe872bc6c7f61099bdcd076d5cb5be6b005587db4e44
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/js/wp-wiki-tooltip.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 1781
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/libs/modernizr.custom.min.js
200 OK 6.2 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/libs/modernizr.custom.min.js
IP
File type HTML document, ASCII text, with very long lines (14558)
Hash 20f3300b8d897519834c9b3ab7eb3672
4f7f3f6fce25d7aceb1d59fedd4f8c34880dfeb5
fa6245f7c4bf9b54001e291567b9fdd7dc4e62e4e88acbfa5853b11289fa9f9d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/libs/modernizr.custom.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 6221
server: Apache
last-modified: Wed, 19 Oct 2022 08:57:28 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/pressapps-knowledge-base/public/js/pressapps-knowledge-base-public.js
200 OK 7.5 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/pressapps-knowledge-base/public/js/pressapps-knowledge-base-public.js
IP
File type ASCII text, with very long lines (23238), with no line terminators
Hash 3ba605c2c315a4e9fe032036d2768d1d
4491321500a5e7e260542a4680d2430db46e5276
2e0eefcaf9aff7f8370ac9e27fff27934df863709ef2bd0aeae2d6ef6f009a8b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/pressapps-knowledge-base/public/js/pressapps-knowledge-base-public.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 7526
server: Apache
last-modified: Wed, 19 Oct 2022 08:57:59 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 4.2 kB URL HTTP/2 www.a26blm.eu/wp-includes/js/jquery/jquery-migrate.min.js
IP
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 4169
server: Apache
last-modified: Wed, 19 Oct 2022 13:56:01 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/js/tooltipster.bundle.min.js
200 OK 10 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/js/tooltipster.bundle.min.js
IP
File type ASCII text, with very long lines (32056)
Hash 47cc461eeee432d3e801b00bcec27812
1e9eefd7f55caa23357c42197e5edc9135e0bd29
06be5e7cf5cca157c453723890708215472c9a30f6e1f18b7e6333f51b78c465
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wp-wiki-tooltip/static/external/tooltipster/4.2.8/dist/js/tooltipster.bundle.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 10164
server: Apache
last-modified: Wed, 19 Oct 2022 13:10:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-includes/js/jquery/jquery.min.js
200 OK 31 kB URL HTTP/2 www.a26blm.eu/wp-includes/js/jquery/jquery.min.js
IP
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 30908
server: Apache
last-modified: Wed, 19 Oct 2022 13:56:01 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/css/style.css
200 OK 21 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/css/style.css
IP
File type ASCII text, with very long lines (1938)
Hash eb8b04191a97a50833a2b271826af8e8
3d3d88f8ace87b22b4f0713e49f713d862fcbb7d
3962e4f719bad737aabbc67cc8ee505d1561929e0ec6f7b931c4fc1a0cf1e936
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/css/style.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 21269
server: Apache
last-modified: Wed, 19 Oct 2022 08:59:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
200 OK 48 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
IP
File type ASCII text, with very long lines (54206)
Hash 5fba561dd5eab07362beadbfb8df1841
f166ff28f207391c91e7a2e6e62ea1f2bbbd26e7
98126a502bb15f784b8929c3902d965a985aec9c5b841c224c2304394e89a6fc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 47699
server: Apache
last-modified: Wed, 19 Oct 2022 14:26:55 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/js_composer/assets/css/js_composer.min.css
200 OK 44 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/js_composer/assets/css/js_composer.min.css
IP
File type ASCII text, with very long lines (65358)
Hash 983fcc89a35d0733fd811bb4ac5ac5e2
8866a11e9f51187b78ec970425bfa5d925d3a4c5
ee5443de349330d4d8f7955c3011f34c7b49583eece5b797775ae214eb273b0c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: text/css
content-length: 44103
server: Apache
last-modified: Wed, 19 Oct 2022 13:46:01 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2016/12/fb.png
200 OK 1.2 kB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2016/12/fb.png
IP
File type PNG image data, 22 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash ac890d051c328e55ed8e7d388812fe91
c5a357a1885620167682de7f100ec873110096b3
d2be3e6f90c3d8f545721e05a5aef134d7fe1a92f2165deeb64664817114abd1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/12/fb.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 1239
server: Apache
last-modified: Wed, 19 Oct 2022 08:15:00 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2016/12/yt.png
200 OK 1.4 kB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2016/12/yt.png
IP
File type PNG image data, 22 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash ec8f150a77ef3b31def510fa6a32d130
889bc26a4e57714cb993a7a402b3be088e3260ca
530a99f1dec1504d8766953b56e3da1991ded7dc4c601a95a729bbb499d93e71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/12/yt.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 1386
server: Apache
last-modified: Wed, 19 Oct 2022 08:15:59 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2017/01/linkedin.png
200 OK 1.5 kB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2017/01/linkedin.png
IP
File type PNG image data, 22 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 712bc53bdcc7a3d319d2cc77ea1972b2
e85a1f1289c25bc4d79f0eeeb8a2ec02670a49b6
f94aa5ad9b39d4080c4d5577cbf8afdd4016bbc9df966adc059c6c5c49366897
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/01/linkedin.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/png
content-length: 1470
server: Apache
last-modified: Wed, 19 Oct 2022 08:18:02 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZKJlXbHMFUQJRZjiUy+9bw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: be4Sdx3Gqyghzfjn1bQXQlR9+Us=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.a26blm.eu/wp-content/plugins/contact-form-7/includes/swv/js/index.js
200 OK 2.9 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 2937
server: Apache
last-modified: Wed, 19 Oct 2022 14:10:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/contact-form-7/includes/js/index.js
200 OK 4.0 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/contact-form-7/includes/js/index.js
IP
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 3957
server: Apache
last-modified: Wed, 19 Oct 2022 14:10:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/bimajax.js
200 OK 0 B URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/bimajax.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/bimajax.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 0
server: Apache
last-modified: Wed, 19 Oct 2022 08:55:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/scripts.js
200 OK 3.7 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/scripts.js
IP
Hash a3e75362cf0ba8d0585797910dc839a1
39b029443a12b23bdf31381d87e62103f9ad3937
85229bf195233f4cddbd609e872e9dcf6d100c8cb9b6c9132871522b734a73e1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/scripts.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 3732
server: Apache
last-modified: Thu, 20 Oct 2022 07:53:54 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/sol.js
200 OK 8.9 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/sol.js
IP
Hash 794bc0d3432845d84e0f6908307280b0
42a4ce34404c6938ac6a34ddf99e8b2a8fa6f44c
3be40f06b479c52be2bb62b9996bbacef018ba48f928a639630a3fb865489304
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/sol.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 8893
server: Apache
last-modified: Wed, 19 Oct 2022 08:58:51 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/slick.js
200 OK 14 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/slick.js
IP
Hash 2e7bb590fc94fcb217d38d9dc7b8fa4b
d5a15f27c3e8eca2bc1fee18b20cb945e8d35ac2
bfe354d263eaa6ae6cb9ddfdf419591bec24ff0b7c971ddb0ef5d64b1c020605
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/slick.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 13515
server: Apache
last-modified: Wed, 19 Oct 2022 08:59:14 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/js/libs/jquery.lazyload.min.js
200 OK 1.3 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/js/libs/jquery.lazyload.min.js
IP
File type ASCII text, with very long lines (3309)
Hash 0145d4b5067cfd6324d991a17c5a9a44
f4e1b19bb2b71c585f09e1bef839a939692688f2
579a99a3a85dfc8d5eff5989e6bc4a7f43c3b5d82861f98d28ccd0055caf1e92
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/js/libs/jquery.lazyload.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 1297
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:44 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
200 OK 5.6 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
IP
File type ASCII text, with very long lines (19831)
Hash 794f45f20ef660275855f7a871029731
31a6df4ab0a36748c70fe457fa9a644c6f723912
e07cab2b3d7e05d157f35afc6218f59cf8f95d6bdd2b08e216dddf6d7726b611
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
content-length: 5640
server: Apache
last-modified: Wed, 19 Oct 2022 13:46:06 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/abel/v18/MwQ5bhbm2POE2V9BPQ.woff2
200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/abel/v18/MwQ5bhbm2POE2V9BPQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9588, version 1.0\012- data
Hash 55d912c794126956bb1e8f41597c131f
f7ade582dbe9d0efe97ae105cab313c6e45904d4
8bea498aed7cc1366e8b966e467b98219c803107d728eab8a6c4c9b045def699
GET /s/abel/v18/MwQ5bhbm2POE2V9BPQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.a26blm.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 09:56:29 GMT
expires: Tue, 23 Jan 2024 09:56:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:29:39 GMT
content-type: font/woff2
age: 168551
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.a26blm.eu/wp-content/uploads/2022/03/int-1.jpg
200 OK 4.7 MB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2022/03/int-1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=2264, bps=182, compression=none, PhotometricIntepretation=RGB, orientation=upper-left, width=4000], baseline, precision 8, 4000x2264, components 3\012- data
Size 4.7 MB (4694005 bytes)
Hash 1874d57d9b9b1eca4c5a80c51dae4648
cbebcac583bc43e6abe9dc14db040d544507d72e
6e9b14a2b824d6d4f8ea184e2b78356e860bc4a815ed3aa3898453c87ca2b966
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/03/int-1.jpg HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/jpeg
content-length: 4694005
server: Apache
last-modified: Wed, 19 Oct 2022 09:05:03 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2013/07/ATELIER-ILLU.jpg
200 OK 3.9 MB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2013/07/ATELIER-ILLU.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=4928, bps=182, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D4S, orientation=upper-left, width=3280], baseline, precision 8, 3280x1811, components 3\012- data
Size 3.9 MB (3883650 bytes)
Hash 368cac3101bb87565f72431cfbdaaaae
788f8734365b85448950bde965907ed0ae5777d1
206941aeb320edfe02e3e25c55fa6e64373f154cef0e6efc4b6b29a11098315f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2013/07/ATELIER-ILLU.jpg HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/jpeg
content-length: 3883650
server: Apache
last-modified: Wed, 19 Oct 2022 07:59:04 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/images/line.png
200 OK 942 B URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/line.png
IP
File type PNG image data, 35 x 1, 8-bit/color RGB, interlaced\012- data
Hash f06e11791432deacf1ad439009dc4801
8bc02ddc1662ded5bf5d765dfed2b14fe647dc32
f96ced0314d9f75bda25dddd6e1408837038547e1a245c5a315c80481464d923
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/line.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/wp-content/themes/atelier/library/css/style.css
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:40 GMT
content-type: image/png
content-length: 942
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:18 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:40 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4948
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 08:45:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4948
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 08:45:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4948
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 08:45:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4948
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 08:45:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4948
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 08:45:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6fa8338e574e2b8272ad3ca7cd9d1d63
298cafecdcac99de25fe5c2c4c993487f73ced6b
f75c20ebc4c0db2df40d958337cd87768714bdf53a48609ad0f97b7129b0b100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6715
x-amzn-requestid: c808c9d9-bbbb-43ff-ab15-33074a760093
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BO5En_oAMFTzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648c5-67151eb46f5a10b0732fbd09;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0pvebF903zoRPgzBK2gxMlcYQTurylOzzCfOO07hYCG5aD7wX_fl9g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:51:11 GMT
age: 82470
etag: "298cafecdcac99de25fe5c2c4c993487f73ced6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af3ceda828750acf5ac7c837612a6e0f
f6364de0805cf3cfe66d19293085da16a2c2f832
baa0cb6e3cec7f840477dfdcea518968f5b72a828dbd346abb09e2d3e3aa3bee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9091
x-amzn-requestid: c5849f51-8fc6-40c0-a1e3-9deb74e06c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEzxoAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-22d80a0c3e6485dd62f420ef;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U8Pd9ECOLiB-ZaqU46162mJRnAYfNE3O5Zi_yaYTk_oNNm2xHNgQSQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:38:40 GMT
age: 40021
etag: "f6364de0805cf3cfe66d19293085da16a2c2f832"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:14:35 GMT
age: 12666
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03ba93e6c29fb268712e33228fa5ee38
2528a659d067ce39b31d5d8a0a9943e313a4caa6
2a3dfcbafd31bfc0cc653f9f43cfa98206334551b8ab76e9ab6d20338c8d6e1c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9864
x-amzn-requestid: dd368937-de20-4e2a-82e3-e82bc20a806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AtgGu3oAMFaoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-7efe789a5411c14a74ec327a;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8MAwoNj7febyP2pH8bDcDTVBP3RLzRKpSqkG_A4L0G9i_-s64YVuJw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 14:55:46 GMT
age: 64195
etag: "2528a659d067ce39b31d5d8a0a9943e313a4caa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb6c1403a1d3c878c08ccaf17f8b3d0a
7596b783e0da5fba63c49374933eccffc223d729
1524dbef51237950d4a14a0e2e053fad933dd92ee0831e2de5c45513122f1d58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6026
x-amzn-requestid: 4b05d7f7-783f-4a79-9eed-bbbeb53bc677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRQ-QHmZIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d061f4-721f473c5c8dadd163ca7689;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 22:55:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -GQ5kEZvbltzLlBeml1PxYH3ufTrSMApVjDyR_NkR-6-vXfuJHOb0g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 23:09:45 GMT
age: 34556
etag: "7596b783e0da5fba63c49374933eccffc223d729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6254fc1aaa5fbb1d87114b5b28d52c40
8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8
866e0b364026754b2a88d73da5ccabf5b5df59fb75bc60b3aa5c66e8322ee764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7691
x-amzn-requestid: ee5858ec-ae6b-4a83-81f0-84903bea9786
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLP5HGwRIAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdf9d3-1b9f899e1d9e9ba67adbeeac;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:06:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59rOv8-DhAIGQx240tISV3X6FskvU33S-4LVzv8fP45qQilEpp2VwQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:10:17 GMT
age: 12924
etag: "8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/images/line-slider.png
200 OK 945 B URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/line-slider.png
IP
File type PNG image data, 216 x 1, 8-bit/color RGBA, interlaced\012- data
Hash 5e397761e65374bab9f1848a5698f642
175d3cf459c37452049a4a1c756eac5d284b1e62
eb2af108a3822b55341d79c80cc9c886dc173007458a81a67dfbb0cd2b7da3ca
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/line-slider.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/wp-content/themes/atelier/library/css/style.css
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:40 GMT
content-type: image/png
content-length: 945
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:40 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/revslider/public/assets/assets/loader.gif
200 OK 2.5 kB URL HTTP/2 www.a26blm.eu/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/wp-content/plugins/revslider/public/assets/css/rs6.css
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:40 GMT
content-type: image/gif
content-length: 2545
server: Apache
last-modified: Wed, 19 Oct 2022 14:26:54 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:40 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 07:41:08 GMT
expires: Wed, 25 Jan 2023 09:41:08 GMT
cache-control: public, max-age=7200
age: 3873
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2022/03/202112_Porte-Maillot-15.jpg
200 OK 8.3 MB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2022/03/202112_Porte-Maillot-15.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=4000, bps=182, PhotometricIntepretation=RGB, manufacturer=Panasonic, model=DC-S5, orientation=upper-left, width=6000], progressive, precision 8, 6000x4000, components 3\012- data
Size 8.3 MB (8286926 bytes)
Hash 8015bd16b83825bf7ff440b313a86a3f
5581dca777cb82030f23d0b7fab2c1d5c74aea30
cf330fffc31c6da9201ad11b2e7f8dd58d9f910ba2d5c9bfcf4e0cce4d34a3f1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/03/202112_Porte-Maillot-15.jpg HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/jpeg
content-length: 8286926
server: Apache
last-modified: Wed, 19 Oct 2022 09:08:50 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.a26blm.eu/wp-content/themes/atelier/library/images/arrow_bottom.png
200 OK 1.2 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/arrow_bottom.png
IP
File type PNG image data, 31 x 15, 8-bit/color RGBA, interlaced\012- data
Hash 6f1456fe74bc002aa24f9e76900979ec
f6582b00f2b55bc22e1e4c845107a50e5cae2bc9
8739fec3358b0a1c2c9920c3efb1a7aaa45bfa35e8db7b17e6e765c7d5ba198b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/arrow_bottom.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/wp-content/themes/atelier/library/css/style.css
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:40 GMT
content-type: image/png
content-length: 1157
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:21 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:40 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/uploads/2020/04/2972-REVA_CLAMART-Terrasse-HD_02.jpg
200 OK 12 MB URL HTTP/2 www.a26blm.eu/wp-content/uploads/2020/04/2972-REVA_CLAMART-Terrasse-HD_02.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=3601, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4500], progressive, precision 8, 5000x3125, components 3\012- data
Size 12 MB (12162768 bytes)
Hash c69046641a31a6c50def3d9c2e197ea0
ba234c6b284b6d2510000c3def77efd148853719
4a9e35c7a493260191852cadc46cf67f6a64545ab88eb60c9e1ff6e48c6693d0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2020/04/2972-REVA_CLAMART-Terrasse-HD_02.jpg HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: image/jpeg
content-length: 12162768
server: Apache
last-modified: Wed, 19 Oct 2022 09:11:34 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/library/images/apple-touch-icon.png
200 OK 8.4 kB URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/library/images/apple-touch-icon.png
IP
File type PNG image data, 129 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash d4082b96d3395dcc66ddfb289349b5eb
6893d2a21b43fd91903f0f5d14aa78b440f4ac9a
529d7552a1eae5cccfe2b4ca19283e2cec63af62e93c2341185aaa6d091f3d0e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/library/images/apple-touch-icon.png HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:41 GMT
content-type: image/png
content-length: 8439
server: Apache
last-modified: Wed, 19 Oct 2022 08:57:07 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:41 GMT
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/themes/atelier/favicon.jpg
200 OK 982 B URL HTTP/2 www.a26blm.eu/wp-content/themes/atelier/favicon.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 16x16, components 3\012- data
Hash f9ceeea402ea0f92a6a7663c3c0fe33f
9f54270b45f8d36b7a6531e3ebdc08a2f476879f
21a0eebf14988da25fc5a3946fbdbfacc43b72812e6fbc981378ef9eef659822
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/atelier/favicon.jpg HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:41 GMT
content-type: image/jpeg
content-length: 982
server: Apache
last-modified: Wed, 19 Oct 2022 08:56:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:41 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81433452-1&cid=1637378907.1674636340&jid=1693271637&gjid=802497266&_gid=1864929532.1674636340&_u=IEBAAEAAAAAAACAAI~&z=551948035
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81433452-1&cid=1637378907.1674636340&jid=1693271637&gjid=802497266&_gid=1864929532.1674636340&_u=IEBAAEAAAAAAACAAI~&z=551948035
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81433452-1&cid=1637378907.1674636340&jid=1693271637&gjid=802497266&_gid=1864929532.1674636340&_u=IEBAAEAAAAAAACAAI~&z=551948035 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.a26blm.eu
Connection: keep-alive
Referer: https://www.a26blm.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.a26blm.eu
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 25 Jan 2023 08:45:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 08:45:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b458c619b07de23b3620f392b0f56f6
e45a3cfee589406e1ea0f1ebd6e8d321487474e1
9927c7a8e606180964b6e052e1eb2bacb007d05a46c1f04e28c48a74096d3c03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8736
x-amzn-requestid: 65bdef1c-0389-4d16-b5fd-931d4753d75d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF_4oAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-1569aec44c54b7c87663feae;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3fzmJ8iZrVvBDurLOdAJXB6uuvk6KHvIBuKzMKAMSjKUzWICg1cCjQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:41:44 GMT
age: 14643
etag: "e45a3cfee589406e1ea0f1ebd6e8d321487474e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:800
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:800
IP
GET /css?family=Open+Sans:800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 25 Jan 2023 08:45:39 GMT
date: Wed, 25 Jan 2023 08:45:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 25 Jan 2023 08:45:39 GMT
date: Wed, 25 Jan 2023 08:45:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.a26blm.eu/wp-content/plugins/revslider/public/assets/js/rs6.min.js
200 OK 0 B URL HTTP/2 www.a26blm.eu/wp-content/plugins/revslider/public/assets/js/rs6.min.js
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js HTTP/1.1
Host: www.a26blm.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.a26blm.eu/
Cookie: PHPSESSID=f565df72f13d73a8dba683796eccdabf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 08:45:39 GMT
content-type: application/javascript
server: Apache
last-modified: Wed, 19 Oct 2022 14:26:55 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Wed, 25 Jan 2023 09:00:39 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
54.36.91.62
95.101.11.115
35.241.9.150
0.0.0.0