Report - eicar.com/download/eicar

Report Overview

Submitted URL
eicar.com/download/eicar_com.zip
IP
89.238.73.97
ASN
#34240 manitu GmbH
Submitted
2022-10-12 22:23:14
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	62 kB	34.120.237.76
widget.tagembed.com	311560	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	944 B	104.21.48.181
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	797 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.148.228.200
ka-f.fontawesome.com	3598	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	445 kB	172.64.203.28
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	1.7 kB	23.36.76.210
kit.fontawesome.com	1868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	354 B	650 B	104.18.23.52
eicar.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	800 B	1.1 kB	89.238.73.97
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.eicar.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	641 kB	89.238.73.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-12	medium	eicar.com/download/eicar_com.zip	Malware
2022-10-12	medium	eicar.com/download/eicar_com.zip	Malware
2022-10-12	medium	www.eicar.com/download/eicar_com.zip/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	www.eicar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js	6.5 kB	2023-03-07	2024-04-25
Pretty URL www.eicar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 04:27:24 Times Seen15495 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.eicar.com/download/eicar_com.zip/	295 B	2023-03-07	2024-01-10
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:05:53 Last Seen2024-01-10 13:16:50 Times Seen13 Hash 8f1f3e3479728c9fb1b1e40283d2289c f345848a9864934c0d41f8ff0d78e1ffbda89d63 686c7c7cace9788f0fa1b2e44176b4c922a152e394f6b2f8a8fae59930ed295e Loading...

	www.eicar.com/download/eicar_com.zip/	339 B	2023-03-08	2023-11-01
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-11-01 17:29:57 Times Seen7 Hash 7da12d39a557a152401ca19e2f1bfc91 3e7d8fceb5b9ed8b823e8f844cfe7d5442340c06 19d7871649d1778e412ba5b187ee133aa8a9b8d202875bbb2ea4b87871bdc5ca Loading...

	www.eicar.com/download/eicar_com.zip/	112 B	2023-03-08	2023-11-01
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-11-01 17:29:57 Times Seen7 Hash 56fb043bf2c3e32ceb8a16957e8d3f14 21e13eacaa28ba3c71aad61763c8a739b31937a6 59b676065b952672d654579369e6e820fa54216adc2c82b35173e631bef37b83 Loading...

	www.eicar.com/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL www.eicar.com/wp-includes/js/jquery/jquery.min.js IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:54:53 Times Seen31826 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.eicar.com/download/eicar_com.zip/	213 B	2023-03-08	2023-11-01
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-11-01 17:29:57 Times Seen7 Hash 9ad8d4a8acaf522505932a36418dd9a8 cab0effeae69eec3d2d1c78aa612db65fbe8155a 3affb4e3b7e7950eb14425ac4cb2429a0fcb6493df3d273ec7f9041117b326a6 Loading...

	www.eicar.com/download/eicar_com.zip/	277 B	2023-03-08	2023-03-08
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:49:01 Last Seen2023-03-08 13:49:02 Times Seen1 Hash f46e1824744136f6eb138c5ab617adcb 6e0575b46a3be4b03be84a8a337b2cb2af5d10f2 35ec655f42a015bec91ac951725d321ac0a3a45eb6442f92eb1165eda431ed91 Loading...

	www.eicar.com/wp-includes/js/dist/hooks.min.js	4.9 kB	2023-03-07	2024-04-24
Pretty URL www.eicar.com/wp-includes/js/dist/hooks.min.js IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen24388 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	www.eicar.com/download/eicar_com.zip/	125 B	2023-03-08	2024-03-05
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2024-03-05 16:49:21 Times Seen18 Hash b02e53df307c03269de2d0c924819d6c 2b76bf2425a7a83109b460dac7b0427954ffc8b7 bdbe25776e12e1dc38acf25490621c83000391af2ee01f7aa14135a90eacef34 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 13:43:31 Times Seen37063515 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	platform.linkedin.com/badges/js/profile.js	2.4 kB	2023-03-08	2023-04-05
Pretty URL platform.linkedin.com/badges/js/profile.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-04-05 01:41:46 Times Seen4 Hash 12da7c842c8d1b2eb1a009eb3cb4f3ca 7f5eb8e814bcb7545aed1d8d2708bd7caf0ea423 91ae9a0ee7e023e824dfd99fe7daec12dae85abed4a4092422679e92a32ffa8a Loading...

	widget.tagembed.com/embed.min.js	15 kB	2023-03-08	2023-03-10
Pretty URL widget.tagembed.com/embed.min.js IP 104.21.48.181 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-03-10 16:50:13 Times Seen1 Hash 0a7853c87922f28b229938ce1d6ec0a3 5b6d1dac5f1d001d4678ed1903c96909fcbba61f fa89f3a23933ea81c6fcd5d7496ce7368cce9261d265c90f820d3888def8cc31 Loading...

	kit.fontawesome.com/ed2a7f5fd4.js	11 kB	2023-03-08	2023-03-10
Pretty URL kit.fontawesome.com/ed2a7f5fd4.js IP 104.18.23.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-03-10 08:46:59 Times Seen1 Hash dfcb2b082c01b086c04889afab8ad43f 05b147d48d4c3f3f2a0199d8f9b64c80a7778189 64beb85f4d0bf33b7330227202a83f3e654ef47e45da0fa4729f82cd303e2029 Loading...

	www.eicar.com/download/eicar_com.zip/	490 B	2023-03-08	2023-03-10
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-03-10 08:46:59 Times Seen1 Hash ac9d5f7e27b989f62c9e47ca16d31abd 09150e78b7100602a09733fc73d2064ab37666c7 9852501b6b6c182ac123d5bda5690ea90e1aeb7b852a09c51555f13713c254c0 Loading...

	www.eicar.com/download/eicar_com.zip/	376 B	2023-03-08	2024-02-07
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2024-02-07 08:24:39 Times Seen1 Hash 4f8916d5a3368e31b73e3fad6c089313 8f24d9739dfb213aad47c4fe47fcffb471ae0dee bc8240678e66c43aab6d874bce87c01047f32afd9b7dfa4a0c011132b25d34d0 Loading...

	www.eicar.com/download/eicar_com.zip/	66 B	2023-03-07	2024-04-21
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-21 20:00:43 Times Seen814 Hash e04be0dd0188a36e0e18beef4e9b071c ae7eca76de5c8abc3072d1babb2d0b77986d621b fd996e5ed43fba47fff738ab926d7c5ad2db1365df6bcf1b5f8ae1b2f2c50bda Loading...

	www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-window.prod.js	3.3 kB	2023-03-07	2024-04-20
Pretty URL www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-window.prod.js IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:23 Last Seen2024-04-20 21:34:58 Times Seen690 Hash cd740957598fa736c88414ac65e9a7fc ecf28418bd34014f790fb24e78941474d1087e98 38d94cf197fc33297f7ddd2462569c82e31ec4606ff7930f06871ed41b625749 Loading...

	www.eicar.com/wp-includes/js/dist/i18n.min.js	10 kB	2023-03-07	2024-04-24
Pretty URL www.eicar.com/wp-includes/js/dist/i18n.min.js IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen2080 Hash f270dd1f483179fdcfb29ce5f91aea13 166661187a97f0b6b685ec4dbdff871e9824168f 1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7 Loading...

	www.eicar.com/download/eicar_com.zip/	313 B	2023-03-08	2023-11-01
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:11 Last Seen2023-11-01 17:29:57 Times Seen7 Hash 36c7af50e5899bc45e9a80695a0c997b e4dd4186175a1b2c7715ee96346bbc6906a8477d 303144393057b7ee0fdac50881d762748ff760c82d346dcab33a9667b0ddac11 Loading...

	www.eicar.com/download/eicar_com.zip/	1.3 kB	2023-03-07	2024-04-25
Pretty URL www.eicar.com/download/eicar_com.zip/ IP 89.238.73.97 ASN #34240 manitu GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:16 Last Seen2024-04-25 12:33:13 Times Seen198 Hash 37b939a0e13495c20b0ff9a6c1734518 53fde1cfb0236fe836ee4a6be002ab17e951122c 5b26c1983b9a6670e8ceb50e83077f63720dba7492e793433d727cd2ce78ed70 Loading...

HTTP Transactions (57)

URL IP Response Size

eicar.com/download/eicar_com.zip

89.238.73.97

301 Moved Permanently

248 B

URL HTTP/1.1
eicar.com/download/eicar_com.zip
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
248 B (248 bytes)
Hash
e2a5c943d3fcb5fd8829b81349563233
0944d34a9923f0c8ed82789b2701899d65b007d5
912c1d08a9ab37d1028ed8d8e416f20ccb06491cfbaff0e15fbf4aaf5e9de26a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /download/eicar_com.zip HTTP/1.1
Host: eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 12 Oct 2022 22:23:02 GMT
Server: Apache
Location: https://eicar.com/download/eicar_com.zip
Content-Length: 248
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 21:49:20 GMT
Expires: Wed, 12 Oct 2022 22:33:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5W0efVKlEzZWWNJTX0FdAxW1-rWO5EN80uBZ1WPq7DBsxDLdz3gJLw==
Age: 2023

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11201
Expires: Thu, 13 Oct 2022 01:29:44 GMT
Date: Wed, 12 Oct 2022 22:23:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c5afb6d2acaf66af4c3fd458a0b70e17
ae58844d8753fe1b62240067b7c0efba86a858d0
42b37d16055f0f3ec52cbb45b4af4900baac4352e87c662811cdb377eb2d3c3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "42B37D16055F0F3EC52CBB45B4AF4900BAAC4352E87C662811CDB377EB2D3C3E"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16983
Expires: Thu, 13 Oct 2022 03:06:06 GMT
Date: Wed, 12 Oct 2022 22:23:03 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: n3uLFb75TEvf4q9+f1Swry5SK9vdI3bHwltHerNnGr3TSPwx5NJ4O0Wy+cc9GkTi83Y4NHlEDlw=
x-amz-request-id: FG4YJ6QF2ZRNVDZD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 22:01:27 GMT
age: 1296
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 22:23:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d29276cfb7eb8c47a38b43e51edd378e
e44a3c4649fc724f740cb276e1132994449009d4
f4a0ef15aa7444e4da4b483c47d796ec80d4b87fbbfd4603188473934e418cfc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4A0EF15AA7444E4DA4B483C47D796EC80D4B87FBBFD4603188473934E418CFC"
Last-Modified: Tue, 11 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21518
Expires: Thu, 13 Oct 2022 04:21:41 GMT
Date: Wed, 12 Oct 2022 22:23:03 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 21:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 21:48:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uT2TjJN-iO7XIhsWVNuv8kncE9CB6x_XMyPP_oeqjQRcT4eRVrfB8Q==
Age: 3202

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3643
Cache-Control: max-age=125068
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 22:23:04 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:07:32 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

eicar.com/download/eicar_com.zip

89.238.73.97

301 Moved Permanently

0 B

URL HTTP/1.1
eicar.com/download/eicar_com.zip
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /download/eicar_com.zip HTTP/1.1
Host: eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Wed, 12 Oct 2022 22:23:02 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
X-Redirect-By: WordPress
Set-Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; secure; HttpOnly
PHPSESSID=28lla360058fj631jihqdh6lg7; path=/
Location: https://www.eicar.com/download/eicar_com.zip/
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-Control: no-store, no-cache, must-revalidate, public
Content-Length: 0
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

push.services.mozilla.com/

54.148.228.200

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.228.200:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6qgg8lPYvup1rmrZaFtZKA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ItHrEE/zHSHmFeDXUb3Tje206es=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
089a31bc0b0b9be4fd7d6013730cddd7
bca0a36a8e5839be007772d428714444cb03b009
5e71216c1cd69c13c48a06f3d2aa35aee3b938c9491467051351a84de5f38c67

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E71216C1CD69C13C48A06F3D2AA35AEE3B938C9491467051351A84DE5F38C67"
Last-Modified: Tue, 11 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Thu, 13 Oct 2022 04:22:59 GMT
Date: Wed, 12 Oct 2022 22:23:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5601
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 22:23:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5601
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 22:23:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5601
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 22:23:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5601
Expires: Wed, 12 Oct 2022 23:56:26 GMT
Date: Wed, 12 Oct 2022 22:23:05 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd38e46c-1252-4a62-b18c-fa49d9d76841.jpeg

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd38e46c-1252-4a62-b18c-fa49d9d76841.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5994 bytes)
Hash
7411df7da53e98c4988663b3338ac449
cd5518eff668619efbf3b821306d651fcb30a712
b87d92eef134e1378d51aac8503545949596c982b53fbda75ccbec71dbff6d7b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd38e46c-1252-4a62-b18c-fa49d9d76841.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5994
x-amzn-requestid: b2681b02-7095-4fe5-83cd-aac9f08ba8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z4erJFq1IAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634677e0-4a000af8739bd4115d01835c;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 08:16:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZTUx0jGqhpb1rXzb_JXDWdubqddPiU5IeTjnxpmMjcOJoiIwU_p7ZQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:59:14 GMT
age: 1431
etag: "cd5518eff668619efbf3b821306d651fcb30a712"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c3b83e-ab1b-415f-87e8-75fbe6a8804e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7580 bytes)
Hash
4428a41f1c63e0c32664bc1b7d6b65a0
325484ea6c2653483019d85d690b4a697f8dde9f
7a8e1afc1f987dbd6275617db2655d7f92f2ead75ce6cbe924bf572e1b2567d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c3b83e-ab1b-415f-87e8-75fbe6a8804e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7580
x-amzn-requestid: 6a320517-254f-40f6-b7cd-b87317d2177d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tq9HkqoAMFVcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63473312-13af2ea55b9d524d37b1dd46;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WaYmkULE2Gb48Ep1NuF98M6D9nbo54L1-tyAqzbSWKUQ0S4jQeiORA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:45:44 GMT
age: 2241
etag: "325484ea6c2653483019d85d690b4a697f8dde9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc8e71c-ad38-40c0-aa1c-62d0543b412e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3621 bytes)
Hash
d7c910df57ddbb4c965a2368ecd0b7c0
3c43ed5bf8ebd3e103a6b8f4736ccb414353937e
bfe79d8edb1e729797ca5a044b425a50e17402a8e02f7aa46d196c4717940995

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc8e71c-ad38-40c0-aa1c-62d0543b412e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3621
x-amzn-requestid: 331206f5-c205-42f7-b4ec-33cda2fb63b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxutmHYYoAMFW9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6343c4bd-40c2f12833e077be52ca770c;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 07:07:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: m0UA1qs-Ea9UjOtLqAwh7WEhU3OJAwvBKEuyn7iUUweXAHdFDYpjMQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 11:52:24 GMT
age: 37841
etag: "3c43ed5bf8ebd3e103a6b8f4736ccb414353937e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681a8280-1225-4c27-9695-8867ab4aa72e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7495 bytes)
Hash
bff9293d8c254aad5dda17678c810234
599fdf812651d53aabac49189064cd078beaad5f
25268aa86bbcf7490a39f2213cc7e76798e098f838be66ba0275c85d0271d9c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681a8280-1225-4c27-9695-8867ab4aa72e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7495
x-amzn-requestid: 004c6b82-4813-46f7-a19c-a083099902ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6UnaFZ3oAMFvcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63473495-06fdc2af0c9c45a94820baaa;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:41:41 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AlBlKBRAzdt64ViWfltsTD9pqrX0_h_Snez-Tw55NVV5HVVBmeXbGg==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:45:44 GMT
age: 2241
etag: "599fdf812651d53aabac49189064cd078beaad5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10403 bytes)
Hash
fc1cec286dd64514d2863d296be2a291
c71c23851d298fb5271dfceff7b5034dabc68653
18e3aff4077f966ba9d851a84137b2913e78dacaaceec91b2ebd15115a7e2886

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5e4230-8a2e-4b3f-9715-0b8e37731446.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10403
x-amzn-requestid: b791bd84-2750-44c9-90e1-e2489737a344
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0WFoEjnIAMFV0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344d08a-43345eaf7dee15b052a5adca;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 02:10:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MiWRqSt38ls48siADU8bxz3-Cd4KOyWGo-1j7_h3qz3092al1hOaKg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:46:26 GMT
age: 2199
etag: "c71c23851d298fb5271dfceff7b5034dabc68653"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f78985f-87d6-4ec4-a0b0-780c8441378a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9723 bytes)
Hash
2da9b3615a180e50b9bab842a2ef5816
240c3fb404e0365a9dd4c19870ff1ed525a469db
2aded0875248d3c1d6e69162444969a0c407bc203c3ae1081d0f9668999fd5e5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f78985f-87d6-4ec4-a0b0-780c8441378a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9723
x-amzn-requestid: a63af9cb-745a-4ea4-9468-5cb78d81e31c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z6Tv8GxNoAMF4kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63473332-35bad61f5391c85c1affffc7;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cjn08hN5uEoayAk-vrmNpfURZ57RbuDlNLYT8GB_JfQPuUT18WqMog==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 21:51:26 GMT
age: 1899
etag: "240c3fb404e0365a9dd4c19870ff1ed525a469db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.eicar.com/download/eicar_com.zip/

89.238.73.97

200 OK

15 kB

URL HTTP/1.1
www.eicar.com/download/eicar_com.zip/
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11984)
Size
15 kB (15155 bytes)
Hash
e56e17c5f65f711646a9c3498ec48d49
6edbf9ebeac40830b4275a49b2263d58f4a8e541
7dc768887a915365f3e66d7eb63a61ef458e8a35579ac79d034f25b23229d411

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /download/eicar_com.zip/ HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:03 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Link: <https://www.eicar.com/wp-json/>; rel="https://api.w.org/", <https://www.eicar.com/?p=8847>; rel=shortlink
Set-Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; secure; HttpOnly
PHPSESSID=ffan5app54ol3msejvn9n4ptm7; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-store, no-cache, must-revalidate, public
Content-Length: 15155
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_e3c75247f16ed8dabe4caa8b6fd93df9.css

89.238.73.97

200 OK

4.2 kB

URL HTTP/1.1
www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_e3c75247f16ed8dabe4caa8b6fd93df9.css
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.2 kB (4216 bytes)
Hash
48f3cf8799de0e60ce8a1b226b6e8db1
23f898f588389b00944adea0a1f22fca496197b3
dd91285d13241a5ecd3ed5d8e426c01a7d93042126d920c37b5a16597c1178cc

HTTP Headers

GET /wp-content/cache/autoptimize/css/autoptimize_e3c75247f16ed8dabe4caa8b6fd93df9.css HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Thu, 22 Sep 2022 20:39:37 GMT
ETag: "4f8f-5e94a0f540db0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000 public
Expires: Mon, 02 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 4216
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: text/css

www.eicar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js

89.238.73.97

200 OK

2.5 kB

URL HTTP/1.1
www.eicar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.5 kB (2457 bytes)
Hash
27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:00:13 GMT
ETag: "194b-5dfc83e34c877-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 2457
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-includes/js/dist/vendor/wp-polyfill.min.js

89.238.73.97

200 OK

7.1 kB

URL HTTP/1.1
www.eicar.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size
7.1 kB (7095 bytes)
Hash
2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:00:13 GMT
ETag: "4ac6-5dfc83e34b8d7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 7095
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css

89.238.73.97

200 OK

132 kB

URL HTTP/1.1
www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (42564)
Size
132 kB (132435 bytes)
Hash
64ba4187449dbc28f7478360cf6b6bcc
29f949d9766667f4c4fef8899ed4c28865243e20
fb9f89c07c35885f09b3e05c7923d1954210b7d3f2c9fe968e661547efcf4a56

HTTP Headers

GET /wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Thu, 22 Sep 2022 20:39:37 GMT
ETag: "12be26-5e94a0f53fe10-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000 public
Expires: Mon, 02 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=49
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

www.eicar.com/wp-includes/js/dist/hooks.min.js

89.238.73.97

200 OK

1.7 kB

URL HTTP/1.1
www.eicar.com/wp-includes/js/dist/hooks.min.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (4875)
Size
1.7 kB (1661 bytes)
Hash
320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:00:13 GMT
ETag: "132e-5dfc83e34e7b7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 1661
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-includes/js/jquery/jquery.min.js

89.238.73.97

200 OK

31 kB

URL HTTP/1.1
www.eicar.com/wp-includes/js/jquery/jquery.min.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 30908
Keep-Alive: timeout=5, max=50
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-includes/js/dist/i18n.min.js

89.238.73.97

200 OK

3.9 kB

URL HTTP/1.1
www.eicar.com/wp-includes/js/dist/i18n.min.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
data
Size
3.9 kB (3865 bytes)
Hash
ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:00:13 GMT
ETag: "27ee-5dfc83e3506f7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 3865
Keep-Alive: timeout=5, max=49
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/cache/autoptimize/js/autoptimize_d38be752bfc87243f90a8221c12b47a6.js

89.238.73.97

200 OK

106 kB

URL HTTP/1.1
www.eicar.com/wp-content/cache/autoptimize/js/autoptimize_d38be752bfc87243f90a8221c12b47a6.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (28107)
Size
106 kB (105740 bytes)
Hash
3f7234503bc8b69b2c16f7292ad328de
8ba978a11965b15dc896ada89289155e733765eb
90711b28812e5b929b20d85d7c6b89db7d86881baa9ac79dc50841a936adcf1c

HTTP Headers

GET /wp-content/cache/autoptimize/js/autoptimize_d38be752bfc87243f90a8221c12b47a6.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:04 GMT
Server: Apache
Last-Modified: Sat, 08 Oct 2022 09:45:52 GMT
ETag: "5f518-5ea82cad12c93-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Mon, 02 Oct 2023 22:23:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=49
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-window.prod.js

89.238.73.97

200 OK

1.3 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-window.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (3290)
Size
1.3 kB (1330 bytes)
Hash
768da9ca641ac07f3a2b40bdea5d8795
739c89be9faa221a0f260bd2b3e9781a965b0366
422a3d19874d219ceaf8f2ca3df37b22e05ce90cf24041adbc7a64191e965c8b

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-window.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "d0b-5e10538ca9366-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 1330
Keep-Alive: timeout=5, max=48
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-semibold.ttf

89.238.73.97

200 OK

130 kB

URL HTTP/1.1
www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-semibold.ttf
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
TrueType Font data, 18 tables, 1st "GDEF", 24 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Size
130 kB (129716 bytes)
Hash
984b9097c910bf2f182889707e2e4cbe
3df643fd98caf2f73b816ce98580d5716581f9d1
6693a131512272bcb2b97b5d76e6e78f37dbffc22eb1c6d2b50f76d9569432b9

HTTP Headers

GET /wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-semibold.ttf HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2022 16:36:07 GMT
ETag: "1fab4-5e20bef12ede3"
Accept-Ranges: bytes
Content-Length: 129716
Cache-Control: max-age=31536000 public
Expires: Fri, 11 Nov 2022 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=47
Connection: Keep-Alive
Content-Type: font/ttf

www.eicar.com/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2

89.238.73.97

200 OK

39 kB

URL HTTP/1.1
www.eicar.com/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
Web Open Font Format (Version 2), TrueType, length 39220, version 1.0\012- data
Size
39 kB (39220 bytes)
Hash
88bd94b6a31a73b5ee2b4a9799c7285e
59b220f616928d7baef57b681093c55c3f787abd
7f260ff280b2e54e84e6f9c2790da49cc9abadc457b77d1df4dea121a8c8ab6e

HTTP Headers

GET /wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2 HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 09:31:50 GMT
ETag: "9934-5e8271958dd45"
Accept-Ranges: bytes
Content-Length: 39220
Cache-Control: max-age=31536000 public
Expires: Fri, 11 Nov 2022 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=49
Connection: Keep-Alive
Content-Type: font/woff2

www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-bold.ttf

89.238.73.97

200 OK

130 kB

URL HTTP/1.1
www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-bold.ttf
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
TrueType Font data, 18 tables, 1st "GDEF", 22 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansB\012- data
Size
130 kB (129784 bytes)
Hash
ff615c954fc5485fb3757516721b41ff
266b36edacf112b480a28f0f5acbbe0ebc01b18f
b79eb2502ddd2ad977e9561261cf5cca15877c21ca26bb372429e4b9aebe8a34

HTTP Headers

GET /wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-bold.ttf HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2022 16:36:07 GMT
ETag: "1faf8-5e20bef130d23"
Accept-Ranges: bytes
Content-Length: 129784
Cache-Control: max-age=31536000 public
Expires: Fri, 11 Nov 2022 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=49
Connection: Keep-Alive
Content-Type: font/ttf

www.eicar.com/wp-content/webp-express/webp-images/uploads/2022/06/trustworthiness-strategy-13-e1654085366117-180x180.jpg.webp

89.238.73.97

200 OK

4.7 kB

URL HTTP/1.1
www.eicar.com/wp-content/webp-express/webp-images/uploads/2022/06/trustworthiness-strategy-13-e1654085366117-180x180.jpg.webp
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 180x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.7 kB (4650 bytes)
Hash
f19f8807cca59e74a91ee857cdfe42c2
d93a8d7dce5d5ed6afab5d7ba79d149d77c16dd9
f9a00fd49ab7ec8830760de1a7d01b88a61f2ab5bcd2ea1ebf9ead8116e5a5f8

HTTP Headers

GET /wp-content/webp-express/webp-images/uploads/2022/06/trustworthiness-strategy-13-e1654085366117-180x180.jpg.webp HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Tue, 07 Jun 2022 00:41:47 GMT
ETag: "122a-5e0d0da8b20df"
Accept-Ranges: bytes
Content-Length: 4650
Cache-Control: max-age=31536000 public
Expires: Thu, 12 Oct 2023 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=46
Connection: Keep-Alive
Content-Type: image/webp

ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-shims.min.css?token=ed2a7f5fd4

172.64.203.28

200 OK

159 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-shims.min.css?token=ed2a7f5fd4
IP
172.64.203.28:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (27377)
Size
159 kB (159172 bytes)
Hash
ebfe394b1ce92369c1d7cf3765d35836
76eb05673a0d42b30fa656b7d105d7a8201346db
fb801feae75651a952056cf13b491496428940f6cfee0b6da3221fd7373a0d71

HTTP Headers

GET /releases/v6.2.0/css/free-v4-shims.min.css?token=ed2a7f5fd4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/
Origin: https://www.eicar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"58dea8f45bf2685132179a837507637a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5eade7e5ebbbd665bf0f8d23a84cc712.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR3-C1
x-amz-cf-id: C_Ndk3k-250KH7m4mcuiTrM8ZaJQLxS0bgBVKC1QySklgTqZx0Rywg==
age: 883705
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ov8tpujPMwcBuOVkjvoChTmRXtuLY%2BM5BEGvn%2FyXo9dTbuw8oHm6vyiPyqMFpfnQzlB4sHeDAOaYvWsEofyTmA2K9%2F82HyQHtH2hhJdHPjJKdBHLm%2BbBDlNRutTv0RPBVmLusOZCxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75933ceebfc971c3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=ed2a7f5fd4

172.64.203.28

200 OK

130 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v5-font-face.min.css?token=ed2a7f5fd4
IP
172.64.203.28:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (608)
Size
130 kB (130051 bytes)
Hash
b865757134173cdf30f0fe05a2c64313
d6f01bd3d12348566ea20f221ddf68bf886f6615
26f989aa996157e5a47bf921b749f6212c82bea63bcc8df72e55f06147a084b2

HTTP Headers

GET /releases/v6.2.0/css/free-v5-font-face.min.css?token=ed2a7f5fd4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/
Origin: https://www.eicar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"e2e288c32f411dc30c0c399302a30654"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 cdd8daeefcf66738f6e908663e79c33e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: q6dcUFjCaxAd0dKaANCkILZY6--qzzcfwijaZT5PZ86rVsoSYOpv0A==
age: 265463
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w1p7FxkxjIOIg1kVAzlNWFuxVOqKlJy6GFxvldnJmMeGNkmxS0LUAbZUEAzf0ZwbPUQw0wpxKS03%2FSJ4OMVli3xCoKobshKrRTQJawFUufZ171zJYVdJ7WC5I2G7psfX69KVb9EO%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75933cee9fa171c3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

platform.linkedin.com/badges/js/profile.js

23.36.76.210

200 OK

1.1 kB

URL HTTP/2
platform.linkedin.com/badges/js/profile.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (521)
Size
1.1 kB (1074 bytes)
Hash
6b7c8f103577c259e34263d0b7d41ef0
b808bd4bfb2fe91fa44040901839dd90e1a478f5
7f5011da3af367b60ca3c628933eab1117fa58bb28990f47e48f403145001103

HTTP Headers

GET /badges/js/profile.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Play
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=3600
last-modified: Fri, 01 Feb 1980 00:00:00 GMT
content-length: 1074
content-encoding: gzip
x-fs-txn-id: 2b8b851010f0
x-fs-uuid: 16e1e5b1af54131670d03002a12b0000
x-li-fabric: prod-lva1
x-li-pop: prod-efr5
x-li-proto: http/1.1
x-li-uuid: FuHlsa9UExZw0DACoSsAAA==
x-edgeconnect-midmile-rtt: 0, 0, 4, 0, 0
x-edgeconnect-origin-mex-latency: 654, 665, 167, 183, 149
unused62: 8096267
date: Wed, 12 Oct 2022 22:23:06 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2

www.eicar.com/wp-content/uploads/2022/05/eicar_icon_16x16.png

89.238.73.97

200 OK

472 B

URL HTTP/1.1
www.eicar.com/wp-content/uploads/2022/05/eicar_icon_16x16.png
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
RIFF (little-endian) data, Web/P image\012- data
Size
472 B (472 bytes)
Hash
b4b3637265dab333aa307582be8f3064
1ecc68505891a4f2dc118d2bec6f0785bc6a3bf3
1c11fc57caf5577894a9c49c1c42a70778b3fc24d5ed74589c869aec1ff73b24

HTTP Headers

GET /wp-content/uploads/2022/05/eicar_icon_16x16.png HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/download/eicar_com.zip/
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
X-WebP-Convert-Log: Serving converted file
Vary: Accept
Last-Modified: Sat, 04 Jun 2022 06:44:01 GMT
Content-Length: 472
Cache-Control: public
Expires: Thu, 12 Oct 2023 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=47
Connection: Keep-Alive
Content-Type: image/webp

ka-f.fontawesome.com/releases/v6.2.0/webfonts/free-fa-solid-900.woff2

172.64.203.28

200 OK

150 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/webfonts/free-fa-solid-900.woff2
IP
172.64.203.28:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 150456, version 770.256\012- data
Size
150 kB (150456 bytes)
Hash
822fa3f2f51f169c970f713b88158737
74b5ddde927a0f84883fed55a65ffbb6ada11761
ad28ece0bf48b1488c82aaf700201d7f6b56a62e11b5b6a0a12481780c8a3417

HTTP Headers

GET /releases/v6.2.0/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.eicar.com
Connection: keep-alive
Referer: https://www.eicar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:06 GMT
content-type: font/woff2
content-length: 150456
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:15:00 GMT
etag: "822fa3f2f51f169c970f713b88158737"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 b5a534d08b2c383ce078e25aff3f2348.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR3-C1
x-amz-cf-id: 42uzRYFf-8mkUrZRxdc80vLdgXG4tMO6XkJKk3l6s-2LzOSt2oFAMQ==
age: 368728
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=peIaKwMX389zhIM5IkFdZuSa6AJbUTOI9jQmrFHMPiF49Em94XxNLeS6%2BMCzsmzSiOWm2YuqYfUumex8b7kCtFWKhmSWC6Le%2BCFOfhJd0kYCKnTsc7bAI0M8upyuT7EK%2Br8ta%2B%2Bo%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75933cf0ca8171c3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.eicar.com/wp.serviceworker

89.238.73.97

200 OK

5.2 kB

URL HTTP/1.1
www.eicar.com/wp.serviceworker
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (2372)
Size
5.2 kB (5208 bytes)
Hash
b18dc2f4542fa0c121b9f58fe1a51283
80e2d748d146a3ad32b4ae0835e305f61fd78774
b88e29b1e47f93863781573e7806980f841ea86e1c395965fb53aea15384328f

HTTP Headers

GET /wp.serviceworker HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
X-Robots-Tag: noindex, follow
Set-Cookie: __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068; secure; HttpOnly
ETag: "7e2566e995705ed7e5de4ec76205f892-gzip"
Cache-Control: no-cache, public
Expires: Thu, 12 Oct 2023 22:23:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 5208
Keep-Alive: timeout=5, max=46
Connection: Keep-Alive
Content-Type: text/javascript; charset=utf-8

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-core.prod.js

89.238.73.97

200 OK

1.5 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-core.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (3075)
Size
1.5 kB (1457 bytes)
Hash
cddd075466b23a2b4e7e2692025e0b19
f6f5f97f64d95a0ab45c77a368ba7f6facf629b0
5b388286c8d982bf4af87d72e19a4ce8caf17aa7cd3900795772e207b3242455

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-core.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "c32-5e10538ca7426-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 1457
Keep-Alive: timeout=5, max=45
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-precaching.prod.js

89.238.73.97

200 OK

2.6 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-precaching.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (6948)
Size
2.6 kB (2563 bytes)
Hash
d23e9a2b0a4022de7bb25e37c21248cd
b6e394c52f0fd4ce9d3763a76ccec2554ca6432a
e7882b22af0fa109a812a5bd2d93cce79793bb726f12c8b171390b9d6b46c446

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-precaching.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "1b59-5e10538ca7426-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 2563
Keep-Alive: timeout=5, max=44
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-strategies.prod.js

89.238.73.97

200 OK

2.3 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-strategies.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (6846)
Size
2.3 kB (2286 bytes)
Hash
31d5f47dfa0c9e39e4c551f6a618ec38
114ac1182e7daf8847cb03fa5191a5cbe360e67f
781c0b02e8a8579b03b6adb876daf8be22fe4e97b38ca9f73d56c55407ebfa6f

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-strategies.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "1af3-5e10538ca54e6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 2286
Keep-Alive: timeout=5, max=43
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-routing.prod.js

89.238.73.97

200 OK

1.5 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-routing.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (3449)
Size
1.5 kB (1474 bytes)
Hash
45cf225be57c2782c6b4d83507192bfa
06e8b098b9206ad96ee3d12335ed2e7fda2a0173
1e16ac5d1d4b85febc17038f687e6835faac7e4c288e5c002b8690200b65e944

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-routing.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "dab-5e10538ca6486-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 1474
Keep-Alive: timeout=5, max=42
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-navigation-preload.prod.js

89.238.73.97

200 OK

321 B

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-navigation-preload.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (599)
Size
321 B (321 bytes)
Hash
f834d1d25c88fc65e923e605a1e19f61
d1bb47866227f9b8876a8b96895a368c2e0cb2a9
b07c43ad561b6c11d4630ee79394eb03ef862a3e167fe2404a8f1f1f92584e58

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-navigation-preload.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "294-5e10538ca54e6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 321
Keep-Alive: timeout=5, max=41
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-expiration.prod.js

89.238.73.97

200 OK

2.5 kB

URL HTTP/1.1
www.eicar.com/wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-expiration.prod.js
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
ASCII text, with very long lines (6302)
Size
2.5 kB (2512 bytes)
Hash
ed958867e2cf1a61f57a6fda0bc3aff2
1d4c5367ac40a0d6e48fb6d553f6a8f41f0d7145
836edf916ed662292d6fe5cc21e0cf756f0d992cbd51a6aa88874bc6ee23e36a

HTTP Headers

GET /wp-content/plugins/pwa/wp-includes/js/workbox-v6.5.3/workbox-expiration.prod.js HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp.serviceworker
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Last-Modified: Thu, 09 Jun 2022 15:10:27 GMT
ETag: "18d3-5e10538ca54e6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, private
Expires: Thu, 12 Oct 2023 22:23:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 2512
Keep-Alive: timeout=5, max=40
Connection: Keep-Alive
Content-Type: application/javascript

www.eicar.com/?wp_error_template=offline

89.238.73.97

200 OK

1.9 kB

URL HTTP/1.1
www.eicar.com/?wp_error_template=offline
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (420)
Size
1.9 kB (1867 bytes)
Hash
5e31398c910b5e50eeb21d1e8e08f40b
d6e8192c63c124e41c2f56bc6d088b382c12af49
a4cc4aca15251d2064de2adfa8bd3844999058e500122c203bfeddb46b06c968

HTTP Headers

GET /?wp_error_template=offline HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/wp.serviceworker
Connection: keep-alive
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Link: <https://www.eicar.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-store, no-cache, must-revalidate, public
Content-Length: 1867
Keep-Alive: timeout=5, max=39
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.eicar.com/?wp_error_template=500

89.238.73.97

200 OK

2.0 kB

URL HTTP/1.1
www.eicar.com/?wp_error_template=500
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (623)
Size
2.0 kB (1963 bytes)
Hash
2ad04f00166da468f33696ed07496980
ec55b7bfd164f57f738b0f29333bd4213f7d162c
f40c63d9a1a0c07da6347ef32907629167cc26434257cad7dc50236099fdf355

HTTP Headers

GET /?wp_error_template=500 HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/wp.serviceworker
Connection: keep-alive
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:06 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Link: <https://www.eicar.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-store, no-cache, must-revalidate, public
Content-Length: 1963
Keep-Alive: timeout=5, max=38
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.eicar.com/wp-admin/admin-ajax.php

89.238.73.97

400 Bad Request

1 B

URL HTTP/1.1
www.eicar.com/wp-admin/admin-ajax.php
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/download/eicar_com.zip/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Origin: https://www.eicar.com
Content-Length: 59
Connection: keep-alive
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7; __wpdm_client=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 400 Bad Request
Date: Wed, 12 Oct 2022 22:23:07 GMT
Server: Apache
Access-Control-Allow-Origin: https://www.eicar.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, public
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdf7d45d-9354-4489-bb43-b1c8f02d5b59.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9277 bytes)
Hash
8fde601296565045f45192474e46e565
e91193965b1efd8d19ca03c96693061125cec801
4375d71b0e4a472b375499151308d17b87f6fba8b79bea2ef680ce9848fc234f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdf7d45d-9354-4489-bb43-b1c8f02d5b59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9277
x-amzn-requestid: edf33f17-3a1e-4e36-ad6a-d26d749e1a72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zn2WcE8rIAMF9mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633fd0f5-09efbbc75e96d48039992aa0;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 07:10:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: isHdtPxDiTDTSOE0vuAos5qwXB8iOJYd7RtL1U63dK3tEy1UTDwa4A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 19:12:11 GMT
age: 11461
etag: "e91193965b1efd8d19ca03c96693061125cec801"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

widget.tagembed.com/embed.min.js

104.21.48.181

200 OK

0 B

URL HTTP/2
widget.tagembed.com/embed.min.js
IP
104.21.48.181:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /embed.min.js HTTP/1.1
Host: widget.tagembed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:05 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 11:54:17 GMT
etag: W/"0a7853c87922f28b229938ce1d6ec0a3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WuLDUsoz0Vg4dFag5SIP4OVl4yLAnLstQnYsMMVTN3V8mxquZrHVEQ==
age: 4767
cache-control: max-age=31536000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jkwsvp2forLjJp%2FO8I4cGgXZAD0k3y%2FrJqaM6LTzGX3w4HXCcTtMKAYW8JEldba3z%2BAMPrGzYBIUvw669x8f3lHpjOyU%2B2%2BAraAXvq1OF8n7ZuqQBFt%2FqgE1l1ArIZAEe4YbUGdq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75933cec4855b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.0/css/free.min.css?token=ed2a7f5fd4

172.64.203.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free.min.css?token=ed2a7f5fd4
IP
172.64.203.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free.min.css?token=ed2a7f5fd4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/
Origin: https://www.eicar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"0fb4e5b70c498af98f246511192b899d"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 728b6476f3e2317ec8044d22806d4f94.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: i1qOuyHIyPGQwEAtjoN5-uH_-e94pl-UHNqEMQS89GgpwVf7gb5LZA==
age: 265463
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xgGWMquI2c7fVREPcsapbHg30qs1nX0rD%2FumyJTcAeHtu6FVKhETX6W%2BufkWgWvRIpgeyibgQiAYMec2tv%2FHACebPtL8Q9kUfwYzn%2BnOPzX8LPlDcACfjL70%2Fz7Oipzimk6SNbt84A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75933cee9f9071c3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kit.fontawesome.com/ed2a7f5fd4.js

104.18.23.52

200 OK

0 B

URL HTTP/2
kit.fontawesome.com/ed2a7f5fd4.js
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ed2a7f5fd4.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:05 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FxyhVezJZ_cHBA_81nVh
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 75933cec2f06b4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=ed2a7f5fd4

172.64.203.28

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.0/css/free-v4-font-face.min.css?token=ed2a7f5fd4
IP
172.64.203.28:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/css/free-v4-font-face.min.css?token=ed2a7f5fd4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.eicar.com/
Origin: https://www.eicar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 12 Oct 2022 22:23:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"a0adfe3c7bd1fa905b7f3b5ecea27889"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7e6302699a89f60ff8e9259d2dea52ba.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR3-C1
x-amz-cf-id: CDcr87NfompjHj9ECO6dloGbIIW0Yrh8LPRrs4sKckIm7y-LiXduvA==
age: 368729
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BJRrVhp0wpr09NVBMHC84WH%2FaU1Dkjd%2BSBGfJq5CTJ%2Fx9agBnljWgS8dHFKWNz0bJIhTp7PXcnRNZxOc4WfqEIS43IQKQpbY11mCcqiE24s1H0NEk0D0aK1vLqcNmpFezmhKvnKu6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75933ceebfd271c3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-regular.ttf

89.238.73.97

200 OK

0 B

URL HTTP/1.1
www.eicar.com/wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-regular.ttf
IP
89.238.73.97:0
ASN
#34240 manitu GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/avia_fonts/type_fonts/opensans/opensans-regular.ttf HTTP/1.1
Host: www.eicar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.eicar.com/wp-content/cache/autoptimize/css/autoptimize_d8781b8e7c0e41367715dbc64e50e2f1.css
Cookie: PHPSESSID=ffan5app54ol3msejvn9n4ptm7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 22:23:05 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2022 16:36:07 GMT
ETag: "1fb04-5e20bef131cc3"
Accept-Ranges: bytes
Content-Length: 129796
Cache-Control: max-age=31536000 public
Expires: Fri, 11 Nov 2022 22:23:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Keep-Alive: timeout=5, max=48
Connection: Keep-Alive
Content-Type: font/ttf

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations