r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4701
Expires: Sun, 27 Nov 2022 20:06:13 GMT
Date: Sun, 27 Nov 2022 18:47:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3729
Cache-Control: max-age=146730
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:52 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:33:22 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 18:19:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1709
alt-svc: clear
X-Firefox-Spdy: h2
regio.brecht-caravan.de/
91.250.114.206301 Moved Permanently 0 B IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 27 Nov 2022 18:47:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://regio.brecht-caravan.de/
X-Powered-By: PHP/7.3.5, PleskLin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10299
Expires: Sun, 27 Nov 2022 21:39:31 GMT
Date: Sun, 27 Nov 2022 18:47:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kSiu10GyviD+3HY04khPxiy6FYJTFBD0OSV/+QyuMnjkp7AIxJ07gMnnWcZleuhH4SqK0GHm+cs=
x-amz-request-id: K15470M3GFBREM7Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 18:44:44 GMT
age: 188
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 787f804f3587ceea44c96255599822cb
0370fba31b640814e09fb925bcb61fc0d0042030
2a8d0ce5e07027835c5bbbe31e337c42cc69514a92bff4530144b0afbf0e07f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A8D0CE5E07027835C5BBBE31E337C42CC69514A92BFF4530144B0AFBF0E07F1"
Last-Modified: Sun, 27 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 28 Nov 2022 00:47:52 GMT
Date: Sun, 27 Nov 2022 18:47:52 GMT
Connection: keep-alive
regio.brecht-caravan.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.250.114.206200 OK 11 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 11224
last-modified: Thu, 14 Jan 2021 15:15:07 GMT
etag: "60005ffb-2bd8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/css/classic-themes.min.css?ver=1
91.250.114.206200 OK 189 B URL HTTP/2 regio.brecht-caravan.de/wp-includes/css/classic-themes.min.css?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Mon, 07 Nov 2022 16:50:07 GMT
etag: "d9-5ece4373eaceb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/logo-brecht-caravan.png
91.250.114.206200 OK 9.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/logo-brecht-caravan.png
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type PNG image data, 315 x 110, 8-bit colormap, non-interlaced\012- data
Hash 0e3b71c8bf9cda0b344179783b191771
7fe74afdf92689cb3bd77077600a72ca4fbfde8d
804ddbaf7594000be46db6cb51b970c0302f01fd22e1625e50c1e1adc7ec2c00
GET /wp-content/uploads/2022/10/logo-brecht-caravan.png HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/png
content-length: 9552
last-modified: Wed, 05 Oct 2022 13:37:37 GMT
etag: "633d88a1-2550"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
91.250.114.206200 OK 90 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 89684
last-modified: Mon, 07 Nov 2022 16:50:06 GMT
etag: "6369373e-15e54"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
91.250.114.206200 OK 13 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (12991), with no line terminators
Hash 5c6f8c2d5542d6fa991c13b497d05b42
4136a4ad9c4514563be497f968ce56d11539c8a8
45489ffcf01ef61169bda340908095cfc2c0ddcfa78a6cad71a2d1b636feccdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 12991
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-32bf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
91.250.114.206200 OK 95 kB URL HTTP/2 regio.brecht-caravan.de/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: text/css
content-length: 94889
last-modified: Tue, 15 Nov 2022 22:16:42 GMT
etag: "63740fca-172a9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3
91.250.114.206200 OK 177 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 177 kB (177090 bytes)
Hash 1ff01c0380d8f01bb2372a2133a73706
2029a252b786b270b005ffee17f131e9409ba7bd
3e431414a23b4e99994ee982a3fc47a01dfd07f2df55f08f313e993af542ebbc
GET /wp-content/themes/Getblue/assets/css/style.min.css?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: text/css
content-length: 177090
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2b3c2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash 882a4f6998e5d6878f6f53f15008e525
2f73282313194a5ea50186b3d94842b47f941274
233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1767
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6e7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
91.250.114.206200 OK 6.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6803), with no line terminators
Hash c47fc57967c35a064f5d1918f173f9d0
96b06b5db2ef750abc8f6232771d7c52879a06d3
dcefc5cafed5481f31bf826c91496e5368751599dd37c4e8d39af82711b439fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 6803
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a93"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
91.250.114.206200 OK 2.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2604), with no line terminators
Hash 5118a4965e81da6dcb7def1ca48b189b
f67279ea1c87e5605f9930c9eedfc4cb54c6adf5
136859a04a16d051a3d15752d0b415a6c2c837f1278a56dbb87a0e93ba8b9601
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2604
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-a2c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
91.250.114.206200 OK 6.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6785), with no line terminators
Hash 6fb516503ad779228bc4ce728695f863
4327965b2c094d7b2e0723e98fdc5278241faba5
e1ad0b4138c80c3d001287d48a3915724c963ef85787df537a8de61f906c5f8e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 6785
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a81"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
91.250.114.206200 OK 6.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6687), with no line terminators
Hash 2a26fbc83240650485f5745fdee66d03
82528831d8d0398f18bc1924267152f3f98afa02
ad6e433f81355d2027a167a1dc4f841c75babc2cf5a14316e48e1419a2eb3352
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 6687
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1a1f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
91.250.114.206200 OK 35 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (34773), with no line terminators
Hash 2da6e4c018f2e2f1dfea2ebaa3ae11d5
b885a7a727ad25230a3bcdd3314da471df899371
ed00ca0964cbfca3e3a28ff14ba988ead8846f695adc310f8d3ad796ffed28fb
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 34773
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-87d5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13723), with no line terminators
Hash 05440d2fd20d5cad51df4b4ed447435d
ea9dba717a70c0afeb61f7a046c6682a62eed827
2b01072bc605e2004b2013b56510475dba15fc901809de67475269d32fb3384d
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 13723
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-359b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13618), with no line terminators
Hash adac662a01508b35cb271074d149b49f
dd59fb4bdf5147ab32bd1dac98f04df75cead4d8
fa9a3b629c012eed6db49a8e209db8ee513f18c4de69ef5a4762838dbddb67dc
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 13618
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-3532"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
91.250.114.206200 OK 1.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1131), with no line terminators
Hash 8c1f36e3c027675079a56b1fbdf0018a
dda09c295433922615fb2c407c53e0abe21d55f6
522e41becdacdc1f0a263e0b96346f7c17c1d60fe3a9094f916b0b149758f08f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-faqs.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1131
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-46b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
91.250.114.206200 OK 21 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (21001), with no line terminators
Hash 182792369c29563f52abf6b0f6aadaab
988149f266f2dbec09c205ec1c5f564cd70a165a
dd3683b4ac4218364a65840dfef8655020d51ec5acc7ac6bda41bbc727c90e66
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 21001
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-5209"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
91.250.114.206200 OK 5.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5217), with no line terminators
Hash e6bc39884fd8636370d4727968d40c9c
4412499648cfeb0a2ec2f69d788c414c9a4177aa
b026d303f9cf5c28c00da0fa4d537b574556524e49fb50434e580530715c00b6
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-chart.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5217
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1461"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1843), with no line terminators
Hash d9c1ce75f7a4d6b3119445df9961e750
d6bb3e4f417a808f47037db41a7da51acbad2f9f
c9b312a9ed8b686e4e9f6ef88d30874c8f12222b9d5afca7dafdaa446042ec6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1843
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-733"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
91.250.114.206200 OK 3.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3344), with no line terminators
Hash 6ee34d5acab69cb428cb2d5f4eb00d17
3b7ba1fea4b197f7363d0631ebb70ff1247594d5
daf181ab9ead5372eefb6fe5d87704d7abdbfa6c09e4c79a2a2f688c6fac5ada
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3344
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d10"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
91.250.114.206200 OK 7.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7507), with no line terminators
Hash b91d520e927a3eae9283e85bf959decb
4be69b91e8186114b91efb0a7f6c492da6e94a2c
b3ce23d3aa6ae1702a3d39482e3959ee43cda13fb33bb9136b09606eef2efd50
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 7507
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1d53"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
91.250.114.206200 OK 271 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (479), with no line terminators
Hash f3e94f8fba3206554d0687716e311abd
6f0f5318efc05a0d9d224925ca37427c4f7fd40a
4b4bf1a3a692fa61c7f8c88ebf6d2326356193b6ce6f50a8efeb24b4e378b02e
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 271
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1df-5b3c28e309bb3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1710), with no line terminators
Hash 70eee3cb857777d0d1799887c1ece674
68a332673bc8eafc9b532234f3e06cb687545def
c87f539817d339f25966b76b34edcefb306389e761d5d318e6fe14c291ae51e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1710
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-6ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
91.250.114.206200 OK 82 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 35197323ff5dc586f97d942ace3947c7
30f9a14552d9cc9bb1e08b97a44bc0904ccd7a46
30c6eb68fd21f916b20ed49d96372fa260d2c59b73b31a617a62cecef5ad9a15
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 82124
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-140cc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
91.250.114.206200 OK 1.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1417), with no line terminators
Hash 044f04f1b997661773e5fb7a98f0283e
0e6a82d2e4e086f07b3a2f4043d444d44ae45a14
18d6442774348bade3c7053b5775acde74021892a547b57511e8f0c9842f74da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1417
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-589"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
91.250.114.206200 OK 5.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5069), with no line terminators
Hash 40719b9116c5d2ecdc5963c3a1096492
7324973e34c2aecb3286fc1ef6637eb1ba3ebebd
171292f14119b55d0106dfa2df43e052b778a713c7bfa629364fae708223e76f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5069
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-13cd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1162), with no line terminators
Hash eef83ebcbba649dcd3d4939d9221df41
cb1d24ed2c6d23e3b41023935aa50177829033d0
836e98f92408ccb7250927acef9b494fbacc18678ef18888f835101557bddd37
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fade.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1162
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-48a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
91.250.114.206200 OK 337 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (695), with no line terminators
Hash 0921c87a11483e7ea5c29d7adeb6575e
7f4edddc51e12385b8ee8c859abbadaae5f2f899
dee531dca244cc30d1bd9e80253cf7362928cc9dfbbf58b3ea020edfdbc6fcbd
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 337
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2b7-5b3c28e303df3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
91.250.114.206200 OK 5.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5277), with no line terminators
Hash ce20febc6b8dffe5b4ffd090862aa897
d651067c1e4cc7204bb31dc6580a80f0c3ea4089
a96a401df5c08d96515158eedd46c80a3915f09020b6d2a0a559ac9d7d62227c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5277
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-149d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
91.250.114.206200 OK 14 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13605), with no line terminators
Hash 455fb50d2239ec5a705f5421797d3a8a
11e8715f0b1b8c15282fb2c88c653d6e163b1608
9657d9acfc3347cb04d62bbfcdc2ab8d45418230b6a90cbc7240eb79026ff3bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 13605
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-3525"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
91.250.114.206200 OK 12 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (12004), with no line terminators
Hash e985c6ff520271e147f180d04a411ec3
57fe22916ef0180d5226f5d157497da54d7dcadf
cc4b131c9e9bc64d98932c96c3c65bc4106c8891a3b3fdc2ecd68a70b9051ff6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 12004
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2ee4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
91.250.114.206200 OK 4.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4175), with no line terminators
Hash a01980edb8ba1fed86d49b04a66306d8
c86ae4c928e5e17f9404e904a56dacc35e86acae
38c4234cba77d179e82329a80ba957df457d4831a842ebdc24e00179a3d4b537
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 4175
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-104f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
91.250.114.206200 OK 329 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (522), with no line terminators
Hash fed87aeee911ffd0e37289d7b95221f8
18c75a93ebd981354df7809a60fd6250e6977fc6
956db31bb259e866379bd531cd3e063472a971449b0d95b24d6e1d3a02b3b67e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 329
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "20a-5b3d74ea4e77b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
91.250.114.206200 OK 2.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2876), with no line terminators
Hash 50c6e717421b2e0215533bfc20411908
91945c6eff79501dd3637a40919f61368cbaf730
8fde2abd4112a36fd4ac293c1207d81435d3c68e378928b911569ea448eec4d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countdown.js?ver=1.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2876
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-b3c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
91.250.114.206200 OK 430 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (945), with no line terminators
Hash fba7a7fe877c30b28aac94da6ab21f05
4449a8cb948839e3679388160107daf9afbbf57f
cd512f9a349ed6e18864ce7472063481a7ad5d07c062bfedf664556d8eaff491
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 430
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "3b1-5b3d74ea4995b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
91.250.114.206200 OK 1.3 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1274), with no line terminators
Hash 9d438d9adbb8fa931323fab6ad97ff4d
670263b8f0fe26afb5219391abd01ca8b5bdf8f1
06c49df1e161d431beb0c50227884fd97c5ab52ab83373ca0ed0e1ee074034fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1274
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-4fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
91.250.114.206200 OK 3.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3555), with no line terminators
Hash 1399e3163023f835423766d8ed6fd081
88ef0a2aa9b006c8d622f598d07149f4568ba010
225978e62705950d43f151a42fe6bbee9d02a3c75cfae8121d6c42608f98e317
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3555
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-de3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3393), with no line terminators
Hash dd8aaca9c551d99c6577006dc749cbb7
152d08bb782d9355d1837eee22ea891f1cd99d0f
0449a9e038e3339d3f289637b406d00323fdb1137a61d707fb8e749d5e7536bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3393
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-d41"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
91.250.114.206200 OK 3.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2985), with no line terminators
Hash 6cf842b08dffbc10e95807c46f7d0573
cc654b95bdc330edf20372e8db8e5d822ecc013e
fa80baec432350a1a335a421479336b65432f358727c89f0e414fe11fa39cd10
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2985
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-ba9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2740), with no line terminators
Hash a706b10989b0311a777c2cade22bc417
a720b4e90e69b88ada39910c526d515fb34e4a61
a6e683147bf97993b9cdabbf0ba7f967fff4a87b32736ed8d0e515c10d155373
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2740
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-ab4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
91.250.114.206200 OK 1.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1900), with no line terminators
Hash 44400d4919eab602739395cc400898e7
81e3213ba003192c982abc210a2cafb86dcd7e99
3eb054e82dde7d4fa01c7edcd6216bbe66cc0d1457d5ba4a45fae14b3477ad71
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1900
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-76c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Caravan-Anschrift.jpg
91.250.114.206200 OK 57 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Caravan-Anschrift.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 13:06:11], baseline, precision 8, 400x345, components 3\012- data
Hash e9b76b895c93778f31995e9f885f46bc
32ae25457859c3cf29cc2ae39aed4fccf773cc82
be2f6c627f8de4862b18108620c47029d1e5b557c3cf7adcc84957064e7b1924
GET /wp-content/uploads/2022/10/Caravan-Anschrift.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 57384
last-modified: Wed, 05 Oct 2022 12:12:43 GMT
etag: "633d74bb-e028"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
91.250.114.206200 OK 5.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5699), with no line terminators
Hash a1531e56b5c6340e633d97a1159d34c1
d81a0714f78dd07733a03c5afd2d09c9bebd9016
fe85251352045b1d73418f58468a6aa1344866115e8c3a3a67a9b65168aa4350
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5699
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1643"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
91.250.114.206200 OK 302 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (499), with no line terminators
Hash 96384af790f02ac5f134d8bb2112e74d
e9e34685a85a9984bcee642fd58117b8dfec56c0
52c2d9f15d7e9c34aedd1f48c6d9429e1d0f07f47cecee2fe91e5b21698910bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 302
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1f3-5b3c28e30805b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
91.250.114.206200 OK 2.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2434), with no line terminators
Hash ba5d0c301bec2b0bed272a306d426bbf
5144c5ff4c42691a89d97bade52a8a390fe29785
fd62d3be0dbe94aa82b3ee2aecc1dc031ecc4d4e4c83870e952ba4bf3937d303
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-modal.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2434
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-982"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
91.250.114.206200 OK 5.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5443), with no line terminators
Hash 581dff110540eff59ad07eb14e50c6ca
aa7ad46c7680999047d73fce39e201c414175223
c4d2094f4bbc80388b22b1fc80b91a2224cc4f5d324a88e1a50f174111771e0b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.event.move.js?ver=2.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5443
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1543"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
91.250.114.206200 OK 3.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3090), with no line terminators
Hash 4eb698c427157704e880425235e5f53c
bdd2679972e7c1e9b47a64bcd40bf8063fdbb6eb
3a3c5895b14229a9b899dc6c8b697577c6427c7f77708ea58bb701468a420178
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-image-before-after.js?ver=1.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3090
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-c12"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
91.250.114.206200 OK 4.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3974), with no line terminators
Hash 47e44bc47462aaaaacc7ba1fd0df9a2b
1352b9107bf17346cc99f5824d2e9f9e2c771c4c
9a2d11b76feb7a9e531a9d055fae88e495017645e5c823a010c818a7744b2c45
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.modal.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3974
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-f86"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
91.250.114.206200 OK 341 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (768), with no line terminators
Hash df87567cabc52ace83c919ce177d250e
d3e47a19eb848058a61ab63aa5c6d7e1d42a73b4
0d4c4fcda482525550273834a736a3d9f2ffaf1c5ce3606b0707bf76d293303c
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-progress.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 341
x-accel-version: 0.01
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "300-5b3d74ea4dfab-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1965), with no line terminators
Hash c78072eca09f914f1553fbf60fc2e80d
581d81b8edba90866f99253e64bc515ce7829cc8
1abeabde02ffffcaa1287c39134ae90d13606d423ca99119b4bca9cb5515489c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-recent-posts.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1965
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7ad"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3378), with no line terminators
Hash 7bd5eb1dd1d5bad28b1657b6e96df1b8
1d8da13fae486eaa268b3d141b8c11cedfddf297
4c33182266f9d163202a45a03fd38eafc78298a35f156d19f6afe1839d25f74e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3378
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-d32"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1961), with no line terminators
Hash e3491db22fbc157eda0ba8cdd735cb1a
23b78e0b1513f5731566a1a64d7113f2d91ac19e
0600dd41021581a95572cf76dfe6754f431bf17d1ed5d8407cbbfd41b3c18445
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-syntax-highlighter.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1961
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7a9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
91.250.114.206200 OK 373 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (741), with no line terminators
Hash 0287f860a8c842bd15caea306aeae882
78fd117d49d7ee7aa8f57809902a190b16fe6040
b59b5dbbb13c25fbd8177298e3960a218c5034c076d4f840958540947896ae22
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 373
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2e5-5b3c28e300b2b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnmobil-Adresse.jpg
91.250.114.206200 OK 79 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnmobil-Adresse.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 13:11:53], baseline, precision 8, 400x345, components 3\012- data
Hash ac8d65e45de1ba60b73eaa2045b92cef
06bc667446f0f7a668a0f206723dad582d4bf631
cb66fde3d795d3d10482d549393eee77407c55442b5d0bf85f884da39a218561
GET /wp-content/uploads/2022/10/Wohnmobil-Adresse.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 78918
last-modified: Wed, 05 Oct 2022 12:12:55 GMT
etag: "633d74c7-13446"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Video.jpg
91.250.114.206200 OK 76 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Video.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 13:43:00], baseline, precision 8, 400x345, components 3\012- data
Hash cf8e2411684202b2fc082fd25355fd85
3ad76aec760e5acba0f4ebbbd3d0937c0b36f840
d6391b9b4bccf09cbf50352f41923098e1f97d8fe9979e55adddd39b20da03ca
GET /wp-content/uploads/2022/10/Wohnwagen-Video.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 75842
last-modified: Wed, 05 Oct 2022 12:13:01 GMT
etag: "633d74cd-12842"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Vermietung.jpg
91.250.114.206200 OK 187 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Vermietung.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 11:41:16], baseline, precision 8, 1200x420, components 3\012- data
Size 187 kB (187175 bytes)
Hash d5f6c301610c2a069831e84b540f116e
993d7c3217ae987be2b04dfca7d635930c3d0390
94fe2c83c6e5580097360846ce91d429c24aacee68f8ccd5b22a322eca78742c
GET /wp-content/uploads/2022/10/Wohnwagen-Vermietung.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 187175
last-modified: Wed, 05 Oct 2022 12:12:59 GMT
etag: "633d74cb-2db27"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Reparaturservice.jpg
91.250.114.206200 OK 260 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Reparaturservice.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 10:33:07], baseline, precision 8, 1200x615, components 3\012- data
Size 260 kB (260235 bytes)
Hash 9261721b8f72462e98ac1ef0606231b3
9c3bbb7e7b8fa6f44980b12a721134bc2ab259f9
1c8bfd988889b9d138b9f8dbbc0b183547c069f306f3eca2a08eb7543fb6e103
GET /wp-content/uploads/2022/10/Reparaturservice.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 260235
last-modified: Wed, 05 Oct 2022 12:12:52 GMT
etag: "633d74c4-3f88b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1685), with no line terminators
Hash d06c60c843b4aa96ec902f21676860d3
7158a0ca7ec65c884169e06418c4cbeee956dbf7
33729b857c5024754aa713d7af5443f8d3ea366203cbc2df719fea37bedd358b
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1685
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-695"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
91.250.114.206200 OK 25 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (25337), with no line terminators
Hash 2f5e7d6416fba59134d024dc5cd193d6
19a427fa80de258de240ba1c49a54eeadc9b0b1a
9a2417fe94980c710d606030d0b1ec1f1794522a1006bc9afbcf9aef00035b4d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 25337
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-62f9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
91.250.114.206200 OK 3.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3822), with no line terminators
Hash 97bf161371a8a45737ccc673a74bc69f
ba1b797c59400d1de01400d0f9781386250fd876
43a591036536e303de34153ff30a5f573d2589e44639ecae77eb3cef23e5e911
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-title.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3822
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-eee"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
91.250.114.206200 OK 1.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1634), with no line terminators
Hash d35ed4af8e38c5a859eb9eaa6237f054
6fc4190c6f6806cacaf4df163073f877086b95e2
0d8cacfa24c3c91c154f1bab2a482bc0102554a451308b974906cae6c403b1a2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1634
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-662"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
91.250.114.206200 OK 5.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5943), with no line terminators
Hash f2a5bf4853fc2d24985bd1a3ec1a40d2
c92ed71bfe0476ba209a15d5ac57b333480fb927
cf5a694f89a767ceaa37156e4b714df2a03a4dfc79a86286e370079dfb821a78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.textillate.js?ver=2.0 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5943
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-1737"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3487), with no line terminators
Hash d1821bc1ca3013109fe82963f105fa1f
1c834500d26ae1874cd3845e8bbc09f77a8cb2b1
7320f1b88beceab8c7640034d3db5012251f4823a593270f8abfdfce0b74d849
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3487
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d9f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
91.250.114.206200 OK 2.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2034), with no line terminators
Hash 34001789ebcbec3a918fd5283b3e303b
820a88763fb7fc318284da77ab7b61ea2022eea2
acf8c2c50d2953ef94da9e99ed22b880a3cc497041833f1fa95ca613c2ab3950
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2034
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-7f2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1781), with no line terminators
Hash e426f3fff0af58bd43ee59d840af83ee
116dbd9e9b3655b0dcb9b6b36771a45a665df1a8
600decba2fea36660d26b29b3b8d6098bfa9cc4b4b8fa044b6104cfcd7ee6f2d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1781
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-6f5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
91.250.114.206200 OK 17 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (16292)
Hash add41bd998490cb0db82b59c60b4b433
c367b3166670d0b6a0ee78f0cb8d476f780201cd
501c8b7edd85aa5b93a52254d40cf04d754018292b113caf7f76441701d30a0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 16573
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-40bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
91.250.114.206200 OK 1.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1098), with no line terminators
Hash 3430261b0500bb2d00a6c002c4ffcc30
839ae2f86ab55112649406d8884524c2d66cc297
34e014c7d41ab0ae2996907824eda3bde337242ebd9dc29aeccd9d67078246ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1098
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-44a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
91.250.114.206200 OK 7.1 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7142), with no line terminators
Hash d006f3197c59c847385c19956611791f
5bce0a7a09237ca5c6a47255db195e94242e39bc
d45bf49661c66720a758ad7ce7bf639d1831bd3ece908705558552953e00eb15
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/lazysizes.js?ver=4.1.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 7142
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1be6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1
91.250.114.206200 OK 1.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1887), with no line terminators
Hash c1b9597f972aac942c0af8b6568c5c67
db863909e800cf647bad8f39f79f941ec8288f9c
29aaa0e6bbb1fe7cf6adf3c2503ff1a127aece767e950527694d06b5c04230d9
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1887
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-75f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
91.250.114.206200 OK 11 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (10837), with no line terminators
Hash b3997023d4e698fdd1db60710a26590d
3ae3d1f1e1ce48106a17c9d33c02472fbecb9628
174e244c283a29b83acfc789a88f269dd468ecf03c7768356e691b81a010e542
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 10837
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-2a55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
91.250.114.206200 OK 54 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (54352), with no line terminators
Hash 59d0b868efeb787eb0cd331f52d25a0e
c6a171b68f26bac1da66883248eb9aa226ed587b
fb19b647849cd037331a7a017e6d5466dc90e3ba866a69ba3c3c5d512f276f13
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.carouFredSel.js?ver=6.2.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 54352
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d450"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
91.250.114.206200 OK 23 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (23008), with no line terminators
Hash ca907333f29fb5447230aae02add6363
42e09f1cdecda5fdca3d43364730510305c6881d
c91b0ef0c9235c53d5ea9a74036c5ec2f6f916c02b80dc344c8975cfab558ab8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.2.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 23008
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-59e0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
91.250.114.206200 OK 334 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (647), with no line terminators
Hash d149404863e3dff58424f3f020ae6ace
869cc5667a9c403ceca871820efb16bd194251d6
bbf79d290f98746420dc076d71132d409a2f9dc4132f7d06669b615097fcfb8f
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 334
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "287-5b3c28e30035b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
91.250.114.206200 OK 2.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2176), with no line terminators
Hash e9256563e9658d30f484407ffb8baf3a
ef00b51debbc367d6039482ef311c115496d5d7d
fa34de993dea91eb0120c3745378192fa1177ba8ec5772e08632318d1d5e1267
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2176
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-880"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
91.250.114.206200 OK 195 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 035163682275e8f6a212787443a5bec6
030d18ea4df0e92fc24075a087a5d9348ac9ec05
a8c8562166bc6c2f9865bcd3ce89dd0e9d5e49cb6583bcb7d4579e173a882f60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-alert.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "104-5b3c28e30788b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
91.250.114.206200 OK 9.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (9399), with no line terminators
Hash cf03f572b825e8710b00b5c86c07aad1
d831d7edd30fdd35842ec489cc61e03a36e7b02c
e21d3d8819243a6cd99c4ab2ed4e9518e3a239f76bf3e9481f318eb4153458e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.touchSwipe.js?ver=1.6.6 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 9399
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-24b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
91.250.114.206200 OK 5.9 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5875), with no line terminators
Hash 7e77adda909e3d75aa2e6290ef2d5e3d
a7b83817d4cc9857c0b46aba19fdb5f14d7d17b7
b116399eeda8ccc6729f77f2c45e266195892a005399c8e0ef2079ecc5454371
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 5875
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-16f3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
91.250.114.206200 OK 305 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (698), with no line terminators
Hash 8ee3b4e7eacb6fc3749ecc6ff5bd2223
06f0ea0e8e4a97683c8d96337a8008ba2a268c64
c8b00948f734aae808a6f0e0d303152a8acf4c64ba385c1a40b07f7c9ca9eabd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-popover.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 305
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "2ba-5b3c28e30a383-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
91.250.114.206200 OK 4.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4419), with no line terminators
Hash 40b4ea0f94fc17d053680aa504b2d069
5df9ba5410e0ad10531514fd2c71e2f16df050b6
bbc6d2a766c68b4ec88d0ec8f9baf63124d71230632c2a022117c9b05b9c6d9c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-carousel.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 4419
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1143"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
91.250.114.206200 OK 339 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (888), with no line terminators
Hash 046f411390a97a03d9218b2bd6c64dba
34f2a8696c779c841c3d021289753cd73d0dd8b2
04e39cb212ecc51faacac3d4ef2cebebd33398b4a83ff34eb69150ab5eeea16f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 339
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "378-5b3c28e30882b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
91.250.114.206200 OK 1.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1707), with no line terminators
Hash 6d4fa80597ec147497f4168e255864bc
73e8dd9a63e71d3d00a0747f53caa43f6c4be09f
04ffc69e6bdae64435d6ec1e0ec347979cec8bb40fd0cfcc22c959988b08745e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1707
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6ab"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
91.250.114.206200 OK 245 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (483), with no line terminators
Hash 4001b77cd3b0c975837e565ac678502a
044aa2eddb3c3f51fb12a4d2a28e251c80878202
040c6f4cd99e486f79e06fffdc110d3a554dd72a8d76ac025cf9a6c7110518ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 245
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1e3-5b3c28e308ffb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
91.250.114.206200 OK 7.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7515), with no line terminators
Hash 885adc2fae9799bdcf39440616753784
f52a1ed07d13998b5a95ffca3911d1eeb87b2d2e
d563abdca069e907d71dac9119231745499c5d731a34582a65f44db7cd208212
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-blog.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 7515
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-1d5b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Werkstatt.jpg
91.250.114.206200 OK 282 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Werkstatt.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 12:13:10], baseline, precision 8, 1200x700, components 3\012- data
Size 282 kB (281459 bytes)
Hash d2ef57042576aaf16ea6922ea7f5a2fa
a3026414a332967caaf404968b3ee935ca7bced6
38d1ab079b01ae7bfeaaf7eb4acd692298fbfc2caa7462b8354f38d90b08966e
GET /wp-content/uploads/2022/10/Wohnwagen-Werkstatt.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 281459
last-modified: Wed, 05 Oct 2022 12:13:03 GMT
etag: "633d74cf-44b73"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1
91.250.114.206200 OK 174 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 1484db10cddde999b798bd7c603eff96
26a39f2ff3b0e16aef731ef3b17f761959678e19
bf3d923f5f52fb47ebd84f4eac24b5800a2bc7a7e5f7403757fc514fe656e54a
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-button.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 174
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "ec-5b3c28e30805b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3
91.250.114.206200 OK 2.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2411), with no line terminators
Hash 6c880fed6961e380f90d15ef10d7e208
fb64d6449f2341cc0a124c927c02a59b5c3db146
5a139fca9be6cbe9de8bcd25f9c24ad12d64fc7ae47eac4f7696d8a4bf84e72d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion.js?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2411
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-96b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3
91.250.114.206200 OK 33 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (31862)
Hash e43647c00a92037d24d8556db0734f2a
23386f86d4be41cd563bc8bb74f48e36330b2653
85040fd29e1243dd78b89f74e0f43af13c340edb6a03ac9def41dc62db15d680
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-header.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 33165
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-818d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3
91.250.114.206200 OK 40 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (31981)
Hash 46f40d3dc7258aee44b11f597fcc18d3
6070d21c89d4329ad3bc3e629d80c04ce115f8d3
73da70069b0764cb2e4f83330af9c33cee6b5e47679c2bc75e473e170c620d27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-menu.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 39757
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-9b4d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
91.250.114.206200 OK 4.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4801), with no line terminators
Hash 78e5004b22330c578156510ba0ce33a9
ab0ea9b604487bbaeabae71a7c085c63dcd7c495
6db7d277489e4025471d77f99343c5befeba403d158d432b7b87460d563211b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 4801
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-12c1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
91.250.114.206200 OK 3.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3464), with no line terminators
Hash ccf72ec7f79a2fe8445ba8679722f290
e216fcaf5318f99bc091040c1a6a53b4744ff16b
17a3d543a99f75298b78071d9f8d2a26815bafc0952485c85d39bde521720141
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3464
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d88"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2679), with no line terminators
Hash 277dfd20d4ad94570e0bd8d6cd8797fd
0676fdf2f2e47823d6ad40134510a84aacd478cb
b6ce2750a5429b968ac4c675acacfbd7da06ddf4638fb1e73ffb0a4553b346cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 2679
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-a77"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3
91.250.114.206200 OK 250 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (340), with no line terminators
Hash 1a3757e2b161b85ec97d872161c6ad9a
1a2e29a7ea018ff34428b0bb11a6b5ed9055018e
ef6019a85746f612113813610dab90644041878e0978138458c2c9c5a2fa2529
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-skip-link-focus-fix.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 250
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "154-5b3c28e334b34-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/fusion-styles/c690c5f048e4b72779fe71cf310a3969.min.css?ver=2.2.3
91.250.114.206200 OK 843 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/fusion-styles/c690c5f048e4b72779fe71cf310a3969.min.css?ver=2.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (59156)
Size 843 kB (843364 bytes)
Hash ba91ec8fa081056a3db935489d9a8cb0
9081ff447ec2b776dac0ef64be726df3cbbe6a67
6ad20009b97d4c08f7961b3dd0984afa4882ead54e272ec1f569f099267285c8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/fusion-styles/c690c5f048e4b72779fe71cf310a3969.min.css?ver=2.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: text/css
content-length: 843364
last-modified: Wed, 05 Oct 2022 14:10:02 GMT
etag: "633d903a-cde64"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/
91.250.114.206200 OK 566 kB IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9495)
Size 566 kB (566381 bytes)
Hash b52a9e283807d22a8473fad5271da998
7e1a75b91060cf68be87dccb0318fbc8049d88d7
09d2ed2dd252542f4768b8d48174d37d94790203f7d22d741e8992aea09afaf2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:52 GMT
content-type: text/html; charset=UTF-8
last-modified: Sun, 27 Nov 2022 18:38:11 GMT
x-powered-by: PHP/7.3.5, PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Ersatzteile-Zubehoer.jpg
91.250.114.206200 OK 374 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Ersatzteile-Zubehoer.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 10:44:28], baseline, precision 8, 1200x578, components 3\012- data
Size 374 kB (373578 bytes)
Hash ef579fd33d2ec55de75c0288b44efe96
b3c4b9d67c76def12da31f7d80cb19bbf1454db0
72f06bbfab5cba1c82699ba66214ec8170371a6262f27bfe46d13bc5451340cb
GET /wp-content/uploads/2022/10/Ersatzteile-Zubehoer.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 373578
last-modified: Wed, 05 Oct 2022 12:12:47 GMT
etag: "633d74bf-5b34a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1244), with no line terminators
Hash 70cee5c6ee29d41a2f95d7ed7997805b
d9105b6e6f90cf2448c24317ba28f723c4db8bcb
d3100ccc3e7ea357480b059670e51d53a8d55c629ef179d67a10f7c7e19e62d6
GET /wp-content/themes/Getblue/assets/min/js/general/avada-comments.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1244
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-4dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3
91.250.114.206200 OK 1.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1807), with no line terminators
Hash 69c35ac975c7cd3477eb1f07bda1808d
9ca2ff708c31c4efd3c81b8123a1a2aef9a6c535
53c9c63ddd7012082893f0d2fbf1b8af2369378bc3c4e12e581b9d98ad93a518
GET /wp-content/themes/Getblue/assets/min/js/general/avada-quantity.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 1807
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-70f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3
91.250.114.206200 OK 3.4 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3418), with no line terminators
Hash 897da891c321ca3859370a964acf8eb2
a076c3befb660c923710a40411e024b2f290e4aa
f4a702c61f8ad016e4d0817fd996f04ca0801b29d4980ee0ae46adf08eda7688
GET /wp-content/themes/Getblue/assets/min/js/general/avada-sidebars.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 3418
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-d5a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3
91.250.114.206200 OK 364 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (992), with no line terminators
Hash 51255dd1d96326c875cd329e5d9ea0a3
7c4778d261658c141845b1727cea3ee376cabddf
74194539dfa912c50860b50494649c6d2ee97b3531092894d7d88d6b9d8bafc2
GET /wp-content/themes/Getblue/assets/min/js/general/avada-general-footer.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 364
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "3e0-5b3c28e334364-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3
91.250.114.206200 OK 293 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (641), with no line terminators
Hash fe8fc369115b1369e40ce4b72a7d4e3c
47086cb82575afe45c3e336ac28484a48d65a0e0
7daa22f5045de9663443eefe773ccb0580c1d14a468c189a2877c4a41bee3905
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-select.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 293
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "281-5b3c28e33474c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3
91.250.114.206200 OK 225 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (486), with no line terminators
Hash e4a7a1811f1fa1da5582e15c030f072a
94b36a9087d705935c402d0d4d1b101494258c68
4ca94cea251c2fc1bc16b0ec9488770086ca388fb32256819cf5c7dd1b35d512
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-scrollspy.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 225
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1e6-5b3c28e3362a4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3
91.250.114.206200 OK 258 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (498), with no line terminators
Hash b236c130d4545b79b03102da6d99eb40
6a7fba26eb3a051040a13a495133dd2871c25a77
786baa95fa16fc05a8f246c86dd70a9beb6528920d482118e1b678a5e9f2b814
GET /wp-content/themes/Getblue/assets/min/js/general/avada-tabs-widget.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 258
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "1f2-5b3c28e336e5c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3
91.250.114.206200 OK 2.7 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2746), with no line terminators
Hash a1d2543d9ee412148453f39cf05cfe0d
c72e8b242d36b69f66be6447264770b4c4ff069f
1b4944b5f8a439d1e7f531888ed6eb66781561f56f84336e75b218cb31bb9af9
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.sticky-kit.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 2746
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-aba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2
91.250.114.206200 OK 1.2 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (1182), with no line terminators
Hash 6f3e1eada93feb0c0bacd9126ece614e
ab529b297fad01ba978a21aa1f05f877b8d36091
211c0a338801bcc09e6378ad85542a9d65402051fdcf1b05227df8c65351f3e2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.toTop.js?ver=1.2 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 1182
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-49e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3
91.250.114.206200 OK 5.8 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5774), with no line terminators
Hash 1bf954f715ca3c4b0f1f42d8e71c9722
b5ba12ab427f4de34f72e5d157d7884dbb63c528
04e58ad249f8c91e0a74012c63ea50ff60e0ef66652fca395df1680c1c868b39
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-drop-down.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 5774
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-168e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3
91.250.114.206200 OK 4.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4570), with no line terminators
Hash ec3277c4aa0cf6f7edb6055d3ff6eb84
c41e2e260a1bd104e10bdc4201252c7d6dad3f6f
efd7b1811cef4b7c13b8ae58028f93fd15f154177f1a65df59c0f2139649b9ee
GET /wp-content/themes/Getblue/assets/min/js/library/jquery.elasticslider.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 4570
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-11da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3
91.250.114.206200 OK 321 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (775), with no line terminators
Hash 8224d0060c542714af72d969fcbae73c
3cfb6572a3d8d8fe425973f4fc5cea2c7ece4bdd
306b876215afde6f7728443124749e3fd757f845727f48af2a6e07af8cec97a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/assets/min/js/general/avada-to-top.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 321
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "307-5b3c28e335304-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3
91.250.114.206200 OK 233 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (565), with no line terminators
Hash f39dd41bde45ff29bd8ce208c94482ca
82c273265b6ed4d17be7f2cd63d105892cc6fd77
ede9659bfe70a2ce8c8e5a06b443c7e70c93d0b83f930c7b5e6010674a4be1f5
GET /wp-content/themes/Getblue/assets/min/js/general/avada-elastic-slider.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 233
x-accel-version: 0.01
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "235-5b3c28e33668c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
91.250.114.206200 OK 28 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (28424), with no line terminators
Hash 61c290fe4d6ce7e1da112c3e7abc3e87
7be73a0e3c91998e00f8428375fd20ee892be913
12c23becef0243662da0212874885d667ad6f16e5da8f7c7e823a47abd898cf1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-core/js/min/avada-fusion-slider.js?ver=1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 28424
last-modified: Wed, 11 Nov 2020 16:29:31 GMT
etag: "5fac116b-6f08"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/posttabs/postTabs.js?ver=6.1.1
91.250.114.206200 OK 1.6 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/posttabs/postTabs.js?ver=6.1.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash a93538a00fc35e10412dbd3dcf03284a
75f1561e8b24126db53a88930bc8b7627feb56f8
17801493672b0ebde53d8ab0400fa63a101ea9e4cd216cabe80b2ff9155464e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/posttabs/postTabs.js?ver=6.1.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 1590
last-modified: Wed, 11 Nov 2020 16:31:09 GMT
etag: "5fac11cd-636"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3
91.250.114.206200 OK 2.5 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2548), with no line terminators
Hash 8e1980499943060812ab9368dd8fefd7
dd01faf05d8c7b8f06149e7036ccee0110f81ef4
a57daa6c05216724158d918ba274f490abd54ea721de900c1e19a6fefb000d6b
GET /wp-content/themes/Getblue/assets/min/js/general/avada-live-search.js?ver=6.2.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/javascript
content-length: 2548
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-9f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 18:11:12 GMT
cache-control: public,max-age=3600
age: 2202
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5855
Cache-Control: max-age=143793
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:44:27 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5855
Cache-Control: max-age=143793
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:44:27 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff
91.250.114.206200 OK 20 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format, TrueType, length 19560, version 1.0\012- data
Hash 058faad55edf033eda55a2e719963f7b
131adbcab0318d115d8bc24baa7851ba3291bc49
be9cbd5f07dd141bdd7c3d8c09b52c6e283506072e37539d05dc4b9dcbb68e5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/wp-content/uploads/fusion-styles/c690c5f048e4b72779fe71cf310a3969.min.css?ver=2.2.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: application/x-font-woff
content-length: 19560
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-4c68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916
142.250.74.164200 OK 666 B URL HTTP/2 www.google.com/maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (471)
Hash b8835ad767f6d71e6f93ec7a61e7c0d2
8dd76b52ba1c4f78fb46205cbd324462b170ba16
4f572ca3eab904f5e5e8f71908096f9d30d9f25b6e271d848967cba008690878
GET /maps/embed?pb=!1m0!3m2!1sde!2sus!4v1489536944384!6m8!1m7!1su-esTXZdKbMAAAQ7Lq51Ow!2m2!1d49.14020550192735!2d9.166364995038748!3f39.94528953742005!4f9.594534121714744!5f0.7742716351052916 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 18:47:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-z0T0EcrUwbJjTItWHPnSnA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 666
x-xss-protection: 0
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-dYyZAC4OCHiYFQ.woff
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-dYyZAC4OCHiYFQ.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 19716, version 1.1\012- data
Hash 33c5967ef4aef0473aa1dfba09b91c61
70fc02a2bf5b2a22a6283502874493462e74f77a
8ede2fb8ba9d5177db167f53deba6ecd74f186d4e2ff4ccfd90acd9e66a27994
GET /s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-dYyZAC4OCHiYFQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://regio.brecht-caravan.de
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19716
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:48:03 GMT
expires: Thu, 23 Nov 2023 22:48:03 GMT
cache-control: public, max-age=31536000
age: 331191
last-modified: Thu, 21 Apr 2022 16:46:58 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/encodesanscondensed/v10/j8_16_LD37rqfuwxyIuaZhE6cRXOLtm2gfT2hq-KLQwFIg.woff
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/encodesanscondensed/v10/j8_16_LD37rqfuwxyIuaZhE6cRXOLtm2gfT2hq-KLQwFIg.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 19744, version 1.1\012- data
Hash 75abe9051271157ba24050b12e649973
4338aa02a3e7207d3a5c8e079d6182ab356ef7fc
576491141ef591bf4972b4172e84e1bbf71df3ffbf72f134e6e097c55f3e6d64
GET /s/encodesanscondensed/v10/j8_16_LD37rqfuwxyIuaZhE6cRXOLtm2gfT2hq-KLQwFIg.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://regio.brecht-caravan.de
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 10:11:42 GMT
expires: Thu, 23 Nov 2023 10:11:42 GMT
cache-control: public, max-age=31536000
age: 376572
last-modified: Thu, 21 Apr 2022 16:47:03 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-IYmZAC4OCHiYFQ.woff
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-IYmZAC4OCHiYFQ.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 19828, version 1.1\012- data
Hash e51721903ee5d766d44b2b3286a61e83
706c39f230d762c948eab798c0df75bc8b159588
5603339c3899fc1d11e8a768081d773437e5768d226fba9cc0db5a9ff3253d7a
GET /s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-IYmZAC4OCHiYFQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://regio.brecht-caravan.de
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 20:49:41 GMT
expires: Thu, 23 Nov 2023 20:49:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:50:15 GMT
content-type: font/woff
age: 338293
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-PYqZAC4OCHiYFQ.woff
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-PYqZAC4OCHiYFQ.woff
IP 216.58.207.195:0
File type Web Open Font Format, TrueType, length 19832, version 1.1\012- data
Hash c6b4c528fea46f30b5479c1e9d092922
f4888eb4e721055cc79d6c370092cddce5a96d6b
fb9a308d3978643f4c52363076baec1c340eb6e89a094285ec95a313658d605c
GET /s/encodesanscondensed/v10/j8_46_LD37rqfuwxyIuaZhE6cRXOLtm2gfT-PYqZAC4OCHiYFQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://regio.brecht-caravan.de
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 10:11:42 GMT
expires: Thu, 23 Nov 2023 10:11:42 GMT
cache-control: public, max-age=31536000
age: 376572
last-modified: Thu, 21 Apr 2022 16:47:10 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.41.201.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.201.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2m5TOodZXU2o54tZQgidhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /Ksgry0jOQjoXMjUJHGbMU+ifNU=
regio.brecht-caravan.de/wp-content/uploads/2022/10/favicon.png
91.250.114.206200 OK 872 B URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/favicon.png
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 2c0fa4f69239f439af6f4b9de4a36b53
a515549ef6c097b23b4b3d7c09f7d78c2568caf1
0b71f41fe3b9dba97202fc48dcad4c6528330cebc1a838cc25e25f398e95a948
GET /wp-content/uploads/2022/10/favicon.png HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/png
content-length: 872
x-accel-version: 0.01
last-modified: Wed, 05 Oct 2022 13:37:45 GMT
etag: "368-5ea49ae8ab8be"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad
142.250.74.106200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad
IP 142.250.74.106:0
File type ASCII text, with very long lines (2469)
Hash f250826c577851bf17069f5f6322a3c2
043702fc9a28137605abcb01fb7bca482bd98114
4223e02dba6bd04256f5a70af7999a5dedba1b09b62217ccbbb0cf3ae45dc028
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=us&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56248
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Sun, 27 Nov 2022 18:20:25 GMT
expires: Sun, 27 Nov 2022 18:50:25 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1649
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Caravan-Team.jpg
91.250.114.206200 OK 472 B URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Caravan-Team.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
GET /wp-content/uploads/2022/10/Caravan-Team.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 223836
last-modified: Wed, 05 Oct 2022 12:12:44 GMT
etag: "633d74bc-36a5c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x01.jpg
91.250.114.206200 OK 248 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x01.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 14:34:37], baseline, precision 8, 1920x650, components 3\012- data
Size 248 kB (247535 bytes)
Hash d59e9b3d67c7f6e052b653eaaf5e32ed
8771fbedb15d61220ca4938b04b2a74ce2e3899a
39ba51a295bee66621ca2506f03b078c7ce6e00a502a5686591dfbdeaf505620
GET /wp-content/uploads/2022/10/home-slider-2022-x01.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/jpeg
content-length: 247535
last-modified: Wed, 05 Oct 2022 13:26:06 GMT
etag: "633d85ee-3c6ef"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x02.jpg
91.250.114.206200 OK 313 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x02.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 14:34:18], baseline, precision 8, 1920x650, components 3\012- data
Size 313 kB (313124 bytes)
Hash d331e7791f598d297ddef552b0e63f39
01a6fc20946070b4bc818b883b7418cb74f79490
c09ac44ea219aad68ac7d77d3ecd26c584874e086de077dfece9b26501fab7cd
GET /wp-content/uploads/2022/10/home-slider-2022-x02.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/jpeg
content-length: 313124
last-modified: Wed, 05 Oct 2022 13:26:08 GMT
etag: "633d85f0-4c724"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x03.jpg
91.250.114.206200 OK 243 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x03.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 14:34:56], baseline, precision 8, 1920x650, components 3\012- data
Size 243 kB (243279 bytes)
Hash 8edbcdb9773b24633691b1d846544201
88866e9c046668efe56c6eb872e6a3775a1f9d4c
5ca630918110844e3aebd686341af95133419763e2ac63f74671824335b2a2d4
GET /wp-content/uploads/2022/10/home-slider-2022-x03.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/jpeg
content-length: 243279
last-modified: Wed, 05 Oct 2022 13:26:10 GMT
etag: "633d85f2-3b64f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js
142.250.74.163200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash c088038bb01fdc7f15f21e2216b6b8b4
fa724c5616022f6825ac476354c492b0bf544d21
b0ecfa74efada796d206177e1bc78c7ac75250608051c6576335c6231fc2de78
GET /maps-api-v3/embed/js/51/1/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 07:12:45 GMT
expires: Thu, 23 Nov 2023 07:12:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 21:36:22 GMT
content-type: text/javascript
age: 387310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x05.jpg
91.250.114.206200 OK 275 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x05.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 14:33:59], baseline, precision 8, 1920x650, components 3\012- data
Size 275 kB (274637 bytes)
Hash 4b9ce33f5622c4039dccbfe78c179763
54f692bd1187797266a8bb430159e32b1a71e5af
a882c7b6599d71569e7d8612abe044d0da5ecbdde4240b7c3ad616f92fc35de1
GET /wp-content/uploads/2022/10/home-slider-2022-x05.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/jpeg
content-length: 274637
last-modified: Wed, 05 Oct 2022 13:26:14 GMT
etag: "633d85f6-430cd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Ausstellung.jpg
91.250.114.206200 OK 215 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Wohnwagen-Ausstellung.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:05 14:35:16], baseline, precision 8, 1920x650, components 3\012- data
Size 215 kB (215414 bytes)
Hash b52b979da7fab2bb4fc63728cfff7eee
db1d89672459af842ce62bf530dfc68ff8cfdf0c
3b9c199c34b3a9170164a75fa797d24ad58cf5902b0e34d3fea1c55e33aad5ca
GET /wp-content/uploads/2022/10/Wohnwagen-Ausstellung.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 255342
last-modified: Wed, 05 Oct 2022 12:12:57 GMT
etag: "633d74c9-3e56e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7653
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:47:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7653
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:47:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7653
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:47:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 75374
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 75378
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: e4ce369f-7654-4c1a-94c2-70c913eb1a01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFL0tEcqIAMFXHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec01d-37bd969f4cdfe220096b8c1f;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:51:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: __2hrJIdzCKzhuJ_YfbSSfz-WwyIqnPugk7P6SuYSjn6b2wwm0otCw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 20:58:18 GMT
age: 78577
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 16:15:23 GMT
age: 9152
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 61267
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:50:08 GMT
age: 75467
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 342827
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 345246
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8835f987270c3a6655732a8b9f79019d
b526a02966f50407fd20c881616a505ca6693ce3
349663442998cf63d2ff77fdfee46ac572703750f977b4f60e9082307309f7c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0
142.250.74.161200 OK 42 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash de0bc4b42eab117cabca5a0c467a2206
b7ad7008a0eb0ac082828a36ae6588d68e514f06
4b609b7071515199a10c77050ea61640a2529d017d97ca76c2d3ad3f50c9f73c
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z0 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 42532
x-xss-protection: 0
date: Sun, 27 Nov 2022 18:47:58 GMT
expires: Sun, 20 Nov 2022 14:47:57 GMT
cache-control: public, max-age=86400, no-transform
etag: "v11a45"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8835f987270c3a6655732a8b9f79019d
b526a02966f50407fd20c881616a505ca6693ce3
349663442998cf63d2ff77fdfee46ac572703750f977b4f60e9082307309f7c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:47:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2
142.250.74.161200 OK 74 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash a8a046771bbc2e43b789413558011fa3
4f899afcd8d31aaae6622512bb3e4030defef006
22c8d337e28b53be2c11a0175fb070ae12b136da2b84a2fc52f66e96280dda98
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:58 GMT
server: fife
content-length: 73570
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y3-z4
142.250.74.161200 OK 64 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y3-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash dbe1b400c495c7e51525b3f82c9b4aa6
e9c0e8e196dd7823ac26541170135a096ad29ec4
e0405643c02ceb5f6cb9c558c46f12e0a23d388c5a8bc99eebff7b80d752c5d6
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2017-08-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 64075
x-xss-protection: 0
date: Sun, 27 Nov 2022 18:47:58 GMT
expires: Sat, 26 Nov 2022 14:48:02 GMT
cache-control: public, max-age=86400, no-transform
etag: "v11a45"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y3-z4
142.250.74.161200 OK 82 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y3-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash f047c271c2b55e5d8cd88583b71a770b
00c7cd64ae3788cba2a0617c87406bfa06aed68a
f083f029d1f375d0bf4e76146c9a346ed6e0b77e99968117b665e75d62780de7
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:58 GMT
server: fife
content-length: 81482
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y4-z4
142.250.74.161200 OK 99 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y4-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 3868db7e8bc8e7179acf4cad39b31bc8
c06c09a458f289af4be226b7b1fa2ebd01ac86db
a419160f6dce7e5b07eb42de62e49a745a15bbb4d862448cec52fb93420808b6
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y4-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:58 GMT
server: fife
content-length: 99326
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2
142.250.74.161200 OK 63 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 999444fcac25b1cbc7cc0569e642b83a
f4ce79f21f499093a64bf0149775a014f8dbea78
b4c27e04911f548ccc192ed058bcd8e1231fe227ea2601cd267fd6736d5a3912
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:58 GMT
server: fife
content-length: 63157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2
142.250.74.161200 OK 68 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 5d07c76f661b41ccac6d7d0ce6facd84
567e185e4ae07f8c5540003bf4ec2ee2388787e1
bb16a400ab37d6f449beb37c768f4f7b70e8afd6ba0a8b58e2a1eff100e7170c
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 67569
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2
142.250.74.161200 OK 53 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash bcd4f590b6314e7c6e57ccd5672e3b16
17957c7a02a7fd716758e3a4605a46c88a4fce7c
bead92f6819fe3e59318a0a04237636cd865c78f49407ace44714659f7e25844
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 53342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2
142.250.74.161200 OK 45 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 9ac307f2c7238391e80585f2e43fd562
a3961815854c29f7db9850f8399928038bcb41e9
b912764996b36339e5e7f56caea1a6cfe6987e60fcfe05489197a4d5a1d085d5
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 44719
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2
142.250.74.161200 OK 73 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 6da978f21a3edeb1c39d777d311fa2c7
aa010f76535d9aa524e726c40d0ef9578df53fdd
f9e7b54455ffdcb0d6acd76f7f5c818c23c5a1658230c1bb1e7df1d28e50ac01
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 72751
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x04.jpg
91.250.114.206200 OK 75 kB URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/home-slider-2022-x04.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 6889efd58bc0e57aeb69609a93d5fcb6
2831d168f6cfae85247cec4df258a34502962223
0539bd50eb303c42f3e7a8953cbe4bc632b8554ec442134f79c9118a435c227f
GET /wp-content/uploads/2022/10/home-slider-2022-x04.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:54 GMT
content-type: image/jpeg
content-length: 293615
last-modified: Wed, 05 Oct 2022 13:26:12 GMT
etag: "633d85f4-47aef"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y3-z4
142.250.74.161200 OK 68 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y3-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 4c1f5a2e537b53c28f911c7d519f4780
33d9c36b3e8c1ae2e3f3cd642410af5746e6a2cc
dbee9368635473d41579c0e8ddc62a6e118c1ec16dab4b8492a8da61881ebdf3
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 68498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y3-z4
142.250.74.161200 OK 72 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y3-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash de47dae74f2b4f136ebfb022f0327225
c59d2a511ede15bbc47928c9f1aebb238bd4ca72
1b67fb59386b0e0af9336c85264f3d3bea337ad36a5b3706b4c9674cef6cbe9e
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 72239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2
142.250.74.161200 OK 63 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 3c137c6bc0f2451ef4f9c5611cdc62a1
373456e9ad33ea55e3d0cd278a4a43ed62b90d24
a194f1bf3e0e4b1606e4ebf18e970a4a37bc2c8d0841dcf4c56dfa6946994d6f
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 62876
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z4
142.250.74.161200 OK 16 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z4
IP 142.250.74.161:0
File type gzip compressed data, max compression\012- data
Hash 412ed79d11ab27e4a507bec6d2510c24
aaf9bd1aba15f158a7bf21568dd7f44b7d894bef
f16a80137d14529af4c35cb3a85ca55041522f851c8b7e1bbb7a393d07471926
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 14891
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y2-z4
142.250.74.161200 OK 38 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y2-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 535b8a071426f18c8691ffe45afeaca9
91bfd04d53556005af3b90fe88192649db68555e
872d2a4849911be523a6d59dce3d0010529ed826d279c6c1ad3a58a1391cbe58
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 38496
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z4
142.250.74.161200 OK 26 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 42bc7bf53cfdccda0b75b1cbc952f1b8
e5ceb6f4293a3b5cc4fa54b9fb9026f2e6db4035
244dff65a9ab30c5880652e4e2896500f811f3b955be523437610d31a67bf5d4
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 25784
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z4
142.250.74.161200 OK 39 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 181d7af07e66807fb8ae5574a0d1da29
465a927baaf8339fbd7b32eeee8ab64eb4f2eb57
7d4a230d6b21f1f9bee0024fe57ee9b8c0eb831108be65be4a94af06d3a78f50
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:47:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:47:59 GMT
server: fife
content-length: 38641
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z4
142.250.74.161200 OK 23 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 653762608f9c5bb5f4fea17aac1dad02
b7c2411506ff7966a13731c225575a6845e0c0e8
fc1abda7cfeead3d198465f0e9e9b1c34424ddbd63521b7f61e03af381f52fed
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x1-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 23168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y2-z4
142.250.74.161200 OK 31 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y2-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 898e7db37fe1c03ed2fda7f21842909b
1ac4d59c7465c82301475c84e3c23aef1a8ace91
52539b06801f33e301f5762aaf586a321bddab0bbdfde89a7032d525ce5d0a8f
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x3-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 31422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y4-z4
142.250.74.161200 OK 62 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y4-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 10051cac395bca0805fb8220516272e5
350effff71dec57645396f25d3aad9505bf70e1f
53bf31ac1bdee7950798f3dc688428ed8d7d2dca8b3297a4b9c431e5e5c26df4
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y4-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 61908
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y4-z4
142.250.74.161200 OK 95 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y4-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash a887af456fa422bf2a3c65b3de9c2703
3653c67f71d9e7461c0a3b4b2d0b35864baace75
62ed13c0bf144e7fc854b7c2e32feae19ac183c94352c15fbae004ae971d89ec
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y4-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 95371
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z4
142.250.74.161200 OK 18 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z4
IP 142.250.74.161:0
File type gzip compressed data, max compression\012- data
Hash 2de9b64ccddd3f25964ff78a270a187a
284c64edff6333e1a4969f3b00f8ebe41c668dae
04cccc699b1df3a8895be1baddd7b7e5053b0f3300363c9e1b68f336ff78a14a
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x2-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 18009
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x12-y2-z4
142.250.74.161200 OK 26 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x12-y2-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 08ab406b1c864cfa4e90dbfe0fb33b82
8113219b7d63a0f0e0e7c141836e9160e2ed6ec1
3f30d6bbfddbae567484f41fd01187ff92f3dc61e41ab5c19e3c0d356255c1e9
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x12-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 25956
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z4
142.250.74.161200 OK 18 kB URL HTTP/2 lh3.ggpht.com/p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z4
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Hash 8042523b17a36baed6192232f6630e9f
c443905408026ec48eea251e2c4feb5f1726dc14
233a8c30a7525c19c574b5f9333fa9b5f85fff94057b363590497bb6237c8bd4
GET /p/AF1QipOcLjJokWrO9ACCUDSanJBaQtPNOKyq2qaiVlEe=x0-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11a45"
expires: Mon, 28 Nov 2022 18:48:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2017-08-31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 18:48:00 GMT
server: fife
content-length: 18040
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-json/wp-statistics/v2/hit?_=1669574291&_wpnonce=1f73aae305&wp_statistics_hit_rest=yes&referred=http%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/
91.250.114.206404 Not Found 1.0 kB URL HTTP/2 regio.brecht-caravan.de/wp-json/wp-statistics/v2/hit?_=1669574291&_wpnonce=1f73aae305&wp_statistics_hit_rest=yes&referred=http%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eb4931c82d2eebd8e39fabf292198830
246e60a36c27c156477699b4d67e14c28bde960f
9828fde077b7116b924327150c7ad9343b2b35b28b605237f912efb3521cbd82
GET /wp-json/wp-statistics/v2/hit?_=1669574291&_wpnonce=1f73aae305&wp_statistics_hit_rest=yes&referred=http%3A%2F%2Fregio.brecht-caravan.de%2F&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=home¤t_page_id=2&search_query&page_uri=/ HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 27 Nov 2022 18:48:01 GMT
content-type: text/html
content-length: 1027
last-modified: Fri, 03 Mar 2017 11:57:16 GMT
etag: "403-549d23f35bf00"
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/Chart.js?ver=2.7.1 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 156737
last-modified: Wed, 11 Nov 2020 16:30:02 GMT
etag: "5fac118a-26441"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 3308
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-cec"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Getblue/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: application/javascript
content-length: 1748
last-modified: Tue, 10 Nov 2020 15:44:34 GMT
etag: "5faab562-6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
regio.brecht-caravan.de/wp-content/uploads/2022/10/Fahrzeuge.jpg
91.250.114.206200 OK 0 B URL HTTP/2 regio.brecht-caravan.de/wp-content/uploads/2022/10/Fahrzeuge.jpg
IP 91.250.114.206:0
ASN #8972 Host Europe GmbH
GET /wp-content/uploads/2022/10/Fahrzeuge.jpg HTTP/1.1
Host: regio.brecht-caravan.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://regio.brecht-caravan.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:47:53 GMT
content-type: image/jpeg
content-length: 226369
last-modified: Wed, 05 Oct 2022 12:12:49 GMT
etag: "633d74c1-37441"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2