leiderbrueder.at/
81.19.145.99302 Found 212 B IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 20476ec5a675e518c8a0b9e8293edfd3
9b8aa81df1ee6f2f9dac1629f82e0a4dcbcc8e5e
eb2440779875895d597d57b92c9484fdac9770122c0e86e63e2a26d850dab1ab
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 06 Nov 2022 04:08:47 GMT
Server: Apache
Location: http://www.leiderbrueder.at/
Content-Length: 212
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14634
Expires: Sun, 06 Nov 2022 08:12:42 GMT
Date: Sun, 06 Nov 2022 04:08:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4086
Cache-Control: max-age=109822
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 04:08:48 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 10:39:10 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4086
Cache-Control: max-age=109822
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 04:08:48 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 10:39:10 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 078950c3ba9ad01927f3da494b1d1de4
443c8a8247e4e3e04c14d21e0227fc4e8f396142
dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14590
Expires: Sun, 06 Nov 2022 08:11:58 GMT
Date: Sun, 06 Nov 2022 04:08:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rAkz/9BxeXiyyCU+XBj2LcgaLMll6kVY23or9ZzETNCdOeSx0b/t7wwIiUHqh69fjk6NoyN2QSDkC3cdTG6f4w==
x-amz-request-id: AVK1ZE6W6ZQ4SQD8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 03:10:17 GMT
age: 3511
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 04:08:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db63d54b77502dd6c7bdc792d4fd093e
026ad8186833988279468829c004c6e2a2f2626f
eff89ef67baa622e8a196ffcadc44d29aafff009bb531da3e979a1f47c3b1c36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3438
Cache-Control: max-age=104117
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 04:08:48 GMT
Etag: "63661997-1d7"
Expires: Mon, 07 Nov 2022 09:04:05 GMT
Last-Modified: Sat, 05 Nov 2022 08:06:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eGKsf09jrO8bCss+xx+UEQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RnWXVUuA+TUiQ/fX8EgGcyfnidw=
www.leiderbrueder.at/
81.19.145.99200 OK 39 kB IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 1c648ee8edca40b5d73bab2005330ea3
ed5ef57f6e671a116465d740a59de09a0214a2b4
7317915e5c96bfbe7d69794128cc9de63d96726b6f4e35e30db6633ed9d5ed1e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:48 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.leiderbrueder.at/index.php?rest_route=/>; rel="https://api.w.org/", <http://www.leiderbrueder.at/>; rel=shortlink
Set-Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9; path=/
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.leiderbrueder.at/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.2
81.19.145.99200 OK 1.7 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.2
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash fc2e6559fc8d9fc13c67481ff30d7cc8
eabc53e08cc444b7255bd97f00f6611d2eb8538b
1e36067ffbde51faec89f96ebe1fd08513be4a97d109cc8130dcdc9cf3f4590d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.2 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:39:49 GMT
ETag: "693-56fb083294340"
Accept-Ranges: bytes
Content-Length: 1683
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/style.css?ver=4.9.22
81.19.145.99200 OK 1.3 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/style.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash 035ec4625f71e1cf7b47f88bc34912c0
80fae063253858478bb14e3936b0978ea0132d73
34966e9116ba89bb1c3c33f4b9c2b9f19fb193d2028f3603df95614448155df0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mega-addons-for-visual-composer/css/style.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Sun, 01 Jul 2018 11:40:23 GMT
ETag: "505-56fee8bdd77c0"
Accept-Ranges: bytes
Content-Length: 1285
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=4.9.22
81.19.145.99200 OK 3.1 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (3051)
Hash 654f65611f368cec35f9571e44459625
5f8186417ab61aca71feaaa704c5ab1fab2e2da6
a87748394a66daba696e59525c519e2e087d2c3a2fb5d3c128cc164829483670
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "c0a-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 3082
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-f1e9be1f544d.css?ver=4.9.22
81.19.145.99200 OK 2.8 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-f1e9be1f544d.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF, LF line terminators
Hash b18ec07ea98aa94896b6e628581211ce
1441f67428ae20c412d54762c67793cd81fd8780
ca8a0c2c6aa390a11dfae05215a96e46acf64847a9aa30fbcbce3b2f3960dac7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-f1e9be1f544d.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Sat, 05 Nov 2022 03:18:26 GMT
ETag: "ac5-5ecb0a4cef2c4"
Accept-Ranges: bytes
Content-Length: 2757
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CLato&subset=latin&ver=1531221735
216.58.211.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CLato&subset=latin&ver=1531221735
IP 216.58.211.10:0
Hash 4be55c45e715ffdb3feb70b67313e91b
e80f4012c91886820da9b26fd3ec0e9a834fcdfc
60ba8a9a6f131d6738aab439cc482b0218fa8ddd24a98a9de0017b4ad7236af5
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7CPlayfair+Display%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CLato&subset=latin&ver=1531221735 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 06 Nov 2022 04:08:49 GMT
Date: Sun, 06 Nov 2022 04:08:49 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.4.8
81.19.145.99200 OK 16 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (16542), with no line terminators
Hash 89656ed6fb2e45c6049482e121fc2d88
907811dd535b9f4ec4371fc23a37d115fe3355e2
e42a7af0f19adf1cf7d67e8fbecad6713ec9cde539f7dc5d134544366679e521
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "409e-5c71d973ea5ba"
Accept-Ranges: bytes
Content-Length: 16542
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/amination.css?ver=4.9.22
81.19.145.99200 OK 21 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/amination.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash 9e53db3058504e41c1c154cb52300dd3
47542fe1317436de4ea8bff328a85f77a6bcbb47
658d3ddee3d93de430d959527ab97b4f3b9e0f726a9554800424e054b8815f98
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/amination.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:13 GMT
ETag: "5378-56fb07d706b40"
Accept-Ranges: bytes
Content-Length: 21368
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/style.css?ver=4.9.22
81.19.145.99200 OK 18 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/style.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (17898), with no line terminators
Hash a52a274a0ba24865dd9cf5603c910393
1c93b2d011519df677fb069c44d4b75fbaea653b
f74fecd03b0b76579a30041454e5714765532a0a32afecc30e8f9872b758b668
GET /wp-content/themes/wolverine/g5plus-framework/xmenu/assets/css/style.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:13 GMT
ETag: "45ea-56fb07d706b40"
Accept-Ranges: bytes
Content-Length: 17898
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=4.9.22
81.19.145.99200 OK 24 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (23577)
Hash 04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:46 GMT
ETag: "5cbb-56fb07f67f580"
Accept-Ranges: bytes
Content-Length: 23739
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=4.9.22
81.19.145.99200 OK 17 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (16933)
Hash a504dba72618165c69322ee7f288453b
b4c2e69573ccdc9b5e2e1c8ca72b0cb31aa3d507
e09cd88086763789c92d1d84baf0dae629400889d3c9f70a67f88ac0a133d99a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:46 GMT
ETag: "4294-56fb07f67f580"
Accept-Ranges: bytes
Content-Length: 17044
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.4.8
81.19.145.99200 OK 62 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type Unicode text, UTF-8 text, with very long lines (61714), with no line terminators
Hash 5de5cfff6fba2af917363f7eb9e79a94
8a972ba6dcf620fb3d38b435dc3409db5fef1065
90b6883e6e9fe0c1bc6a9bb056f4d5598983b72b53217b187c1229abc8eb63b9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:49 GMT
ETag: "f120-5c71d97471202"
Accept-Ranges: bytes
Content-Length: 61728
Keep-Alive: timeout=300, max=500
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.carousel.css?ver=4.9.22
81.19.145.99200 OK 1.5 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.carousel.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash 0371b5a2d50e985b09b7d337edc0dc9f
07ad383de4cd0e21c289e3c6695b4822d1a7ad1d
4dc77ee90dc2225b57b31d28fe06213cd6c491bdc7249a6e70ebd003b72c5702
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.carousel.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "5c4-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 1476
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/wolverine-icon/css/styles.css?ver=4.9.22
81.19.145.99200 OK 30 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/wolverine-icon/css/styles.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash e573d5436343a800805cf9e71653fe93
0adde15e0330f8c817b3fb360c290747fca4b48d
1fddad4ac0fa42f5989b5c5a5c6cb5a1aa0ba01cc9dfa951beb47faa52726779
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/wolverine-icon/css/styles.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:47 GMT
ETag: "736d-56fb07f7737c0"
Accept-Ranges: bytes
Content-Length: 29549
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.theme.css?ver=4.9.22
81.19.145.99200 OK 1.7 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.theme.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash f23cf727e4fcca9a5470658da5e755c9
98c420dadba613ae097236b8a54138d0a5fa94cf
91ee720f3c25ec6b209d88019c20e2592340ff1fe1c94f3d5431e5fd1e77e5dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.theme.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "681-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 1665
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.transitions.css?ver=4.9.22
81.19.145.99200 OK 4.5 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.transitions.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash b1bdaeac4065bf67a7d7a06213192964
737bc8e18a55d93ee2d76c8d3cc0fd284f1ee5c0
711bc5b0b8c40e39b2560e65797d175e72a89b49ebbc266a7c7b581c4bec4b21
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/owl-carousel/owl.transitions.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "117c-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 4476
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.1.1
81.19.145.99200 OK 459 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.1.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 459 kB (459328 bytes)
Hash 46f4507cd762ee4cf8cd000012cd2793
43380d99eee147fcb7999e8992503c0813a29fcf
014bdcd85899b1e128d977bbb8f899d6c9623e68cfb63b3a637d39f61ff01ff5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.1.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:47:46 GMT
ETag: "70240-56fb09f97b480"
Accept-Ranges: bytes
Content-Length: 459328
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.9.22
81.19.145.99200 OK 2.8 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (2752), with no line terminators
Hash 93fe20a52b4558c24e1567e4c69e01bf
dfaf1c3fca2324ebbc7ef395d9611dde4e6bb928
1449fa9e433ff2969bbe27d637ce1771846dcc0c95b2ceace9e6bd178dba4580
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 13:14:41 GMT
ETag: "ac0-56fb383959240"
Accept-Ranges: bytes
Content-Length: 2752
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/bootstrap/css/bootstrap.min.css?ver=4.9.22
81.19.145.99200 OK 117 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/bootstrap/css/bootstrap.min.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (65371)
Size 117 kB (117150 bytes)
Hash 58a49b3689d699cb72ffda7252d99fcb
973e37a8502921d56bc02bb55321f45b072b6f71
d31bef450ee67b64f9b70bfdf41fe4e00c65438705cc1fbb48ea6026d3a5d697
GET /wp-content/themes/wolverine/assets/plugins/bootstrap/css/bootstrap.min.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "1c99e-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 117150
Keep-Alive: timeout=300, max=499
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/font-awesome/css/font-awesome.css?ver=4.9.22
81.19.145.99200 OK 37 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/font-awesome/css/font-awesome.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash c495654869785bc3df60216616814ad1
0140952c64e3f2b74ef64e050f2fe86eab6624c8
36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mega-addons-for-visual-composer/css/font-awesome/css/font-awesome.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Sun, 01 Jul 2018 11:40:22 GMT
ETag: "9226-56fee8bce3580"
Accept-Ranges: bytes
Content-Length: 37414
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.3.1
81.19.145.99200 OK 30 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.3.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (29418), with CRLF line terminators
Hash 9f4f00ef6543d1605d902f51fe083c2d
ee85e1283c695be178cf766524aa61ea36372a57
2e81985d6b2a407b4760c2c85a2cdfebeb13dfa8c07781162c429f7e8381aa45
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.3.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:49:22 GMT
ETag: "745d-56fb0a5508c80"
Accept-Ranges: bytes
Content-Length: 29789
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/prettyPhoto/css/prettyPhoto.css?ver=4.9.22
81.19.145.99200 OK 20 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/prettyPhoto/css/prettyPhoto.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (402)
Hash e8d324d0a1c308cc2c9fdddb263223d5
a1ae5ab211ad71549139f3a26c1da50a24710fa6
c63be02717683d2efdc8c887d77d289092a50b7d51210e87033045ea2b7c9eed
GET /wp-content/themes/wolverine/assets/plugins/prettyPhoto/css/prettyPhoto.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:47 GMT
ETag: "4db0-56fb07f7737c0"
Accept-Ranges: bytes
Content-Length: 19888
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/skin/g5plus/skin.css?ver=1
81.19.145.99200 OK 3.0 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/skin/g5plus/skin.css?ver=1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash f9765271f787e0baeda1184bf55c0e2d
ac26a4fd3bdb4c846ae9e2ebd3a1ed16989d886e
ebca103287882c357b1eeb39c91bc7881dc98600e1171c9dd355a25c6d5c29d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/skin/g5plus/skin.css?ver=1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "b91-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 2961
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/themes/wolverine/assets/css/vc-customize.css?ver=4.9.22
81.19.145.99200 OK 36 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/css/vc-customize.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (684)
Hash d6a6b9ae065fe364785da6c15d324035
685aaf95ed2c3ae1a655c37da0e4c33bbb74318c
f01d1b2fb81d9775dcfbe095fa66490182c8ec766e40070ba6888764e23c558b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/css/vc-customize.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:42 GMT
ETag: "8ce5-56fb07f2aec80"
Accept-Ranges: bytes
Content-Length: 36069
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
81.19.145.99200 OK 10 kB URL HTTP/1.1 www.leiderbrueder.at/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Tue, 22 May 2018 06:27:10 GMT
ETag: "2748-56cc582100b80"
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44
81.19.145.99200 OK 5.4 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (5360), with no line terminators
Hash 92231510d69792ca4a5a9b3784ed9c14
a7748df6a7e2eb5dc54cd42372788b80b2a4e893
b82eefb6a4f332f80cf77897057def50d542447398557c6be322d86a3ebe613b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 13:14:41 GMT
ETag: "14f0-56fb383959240"
Accept-Ranges: bytes
Content-Length: 5360
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/ihover.css?ver=4.9.22
81.19.145.99200 OK 437 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/css/ihover.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (377), with CRLF line terminators
Size 437 kB (437322 bytes)
Hash 4dc7d32b9955ea3c4deb883415de332d
4aadea59e5de8345ccdd3922c5e2e7584bc41c5d
010a5dfe7c181baa55dd42ff821c5815dcde885eb0f932fe3f45401ae3c1f124
GET /wp-content/plugins/mega-addons-for-visual-composer/css/ihover.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Sun, 01 Jul 2018 11:40:23 GMT
ETag: "6ac4a-56fee8bdd77c0"
Accept-Ranges: bytes
Content-Length: 437322
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/js/script.js?ver=4.9.22
81.19.145.99200 OK 5.0 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/mega-addons-for-visual-composer/js/script.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash 942b7642af814f5b732ed088a65d5d3e
bd484451dfe8bfbbd8d45ba7a0ef6d3133235539
d86ffe58cb72fb5b5e68866a8a3b731d2528b4332b95c29a70bbeaf911129beb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mega-addons-for-visual-composer/js/script.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Sun, 01 Jul 2018 11:40:23 GMT
ETag: "13a9-56fee8bdd77c0"
Accept-Ranges: bytes
Content-Length: 5033
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
81.19.145.99200 OK 3.9 kB URL HTTP/1.1 www.leiderbrueder.at/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (3704)
Hash e6784d91bf2c668bc4093063c5b15113
687e1d2e957a821280dbd205ae66182f16dfdc30
194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:32:04 GMT
ETag: "f59-5bffd0596a876"
Accept-Ranges: bytes
Content-Length: 3929
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/style.css?ver=4.9.22
81.19.145.99200 OK 492 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/style.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type HTML document, Unicode text, UTF-8 text
Size 492 kB (492513 bytes)
Hash 2a83af900014e4929b6ac0b5fb4369a1
766204cc29e329a6ae50953d4802508a48a83a38
03fd8743f736aefe037d913e29a672fbb533c5fda1f4dbbaa3c3b7de745d9fc8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/style.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Tue, 10 Jul 2018 05:09:01 GMT
ETag: "783e1-5709e20ccf540"
Accept-Ranges: bytes
Content-Length: 492513
Keep-Alive: timeout=300, max=498
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.3.1
81.19.145.99200 OK 65 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.3.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (64278), with CRLF line terminators
Hash 9e0cb44ca244750e4020377345c29755
1601c943bc708568798ce0ab4b3b4a5b5c5e727b
16158ddcd7503a0ee4fe385cb273df2f116b7790845c9d420028d6816f1b3a54
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.3.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:49:22 GMT
ETag: "fc65-56fb0a5508c80"
Accept-Ranges: bytes
Content-Length: 64613
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.4.8
81.19.145.99200 OK 2.7 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type HTML document, ASCII text, with very long lines (2650), with no line terminators
Hash 20ead1ca5cc9ad8f31dc2af68f04835c
b5611d930c1631c91a4469b69a2f49dda00d05c9
49881a55bf915d901a93bab525b3ef8ea896c5c1ddee5623bd0a2c9541bec6d0
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "a5a-5c71d973ccd11"
Accept-Ranges: bytes
Content-Length: 2650
Keep-Alive: timeout=300, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.1.1
81.19.145.99200 OK 895 B URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.1.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash 902b7ca09549975e55e136fb0026df9a
ae9b808c87bbbf57b9f3132c41effaaa12af03ff
2685c1caf9a3e6616da70c63212ff6d6a6747e4929edf55832ebd18ef7a43ccf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.1.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:47:50 GMT
ETag: "37f-56fb09fd4bd80"
Accept-Ranges: bytes
Content-Length: 895
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
81.19.145.99200 OK 12 kB URL HTTP/1.1 www.leiderbrueder.at/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (9063)
Hash fe0575b66568074463f12485d90f6d4c
aeedd9ab3b7874e63f647042963cb1301a38b391
647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:32:04 GMT
ETag: "2ea7-5bffd0596df26"
Accept-Ranges: bytes
Content-Length: 11943
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.3.1
81.19.145.99200 OK 111 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.3.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110563 bytes)
Hash a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.3.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:49:22 GMT
ETag: "1afe3-56fb0a5508c80"
Accept-Ranges: bytes
Content-Length: 110563
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-15bba7715f8a.css?ver=4.9.22
81.19.145.99200 OK 2.8 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-15bba7715f8a.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF, LF line terminators
Hash 26b5ab538e24dd14647bed53cff92482
dc3014fd6e388c8e4f2dca8eab2dd67962928708
406d7cba33c5df6886b704b1f730c3b4a8bf12a883baa71e872c580ac83cf10f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/siteorigin-widgets/sow-social-media-buttons-flat-15bba7715f8a.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Sat, 05 Nov 2022 03:18:27 GMT
ETag: "ac5-5ecb0a4d15fd7"
Accept-Ranges: bytes
Content-Length: 2757
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/so-widgets-bundle/icons/fontawesome/style.css?ver=4.9.22
81.19.145.99200 OK 859 B URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/so-widgets-bundle/icons/fontawesome/style.css?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash 477872444b9c5928b1c6dd9a3c883f87
1a8c385f0817e4bbba81b39103128477bbc9ab64
eeeac390b4177f8ad60f074e0049f3c6716b1d919c030caa7b974c972a7f4adb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/so-widgets-bundle/icons/fontawesome/style.css?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Fri, 22 Jun 2018 13:18:41 GMT
ETag: "35b-56f3aded76e40"
Accept-Ranges: bytes
Content-Length: 859
Keep-Alive: timeout=300, max=492
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.2
81.19.145.99200 OK 15 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.2
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
Hash 80f051b85c7cc301d20dc6c522c71814
d8344eee926ebe2f35396f51cfa5614cb4307b40
c6138c4b65aaff6e46d51c26096ffffadd202974003ad0f6d4475b45204bd0ab
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.2 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:39:49 GMT
ETag: "38f9-56fb083294340"
Accept-Ranges: bytes
Content-Length: 14585
Keep-Alive: timeout=300, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
81.19.145.99200 OK 9.6 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "255e-5c71d973cf421"
Accept-Ranges: bytes
Content-Length: 9566
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
81.19.145.99200 OK 1.8 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "736-5c71d973d2301"
Accept-Ranges: bytes
Content-Length: 1846
Keep-Alive: timeout=300, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.4.8
81.19.145.99200 OK 1.4 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (1402), with no line terminators
Hash a5a1bfcbe64e5d92a029110590b6cb5d
d6a7dc6fb84a16c5de4878b8d594ddbc924755f7
0a8a1c16ef3ef056a530105e55b0d8d9aec811d68e2b66bf76beba05d263e883
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "57a-5c71d973cb989"
Accept-Ranges: bytes
Content-Length: 1402
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.4.8
81.19.145.99200 OK 2.6 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (2568), with no line terminators
Hash 8939093b911fec2160314e95e5265f4e
b8fdc9e9662352c824c73013136534aec45ff54b
8fad4915319845c1ac13c15ccc2163a680d4c34c61c0f9b6a144718f77cd2b5d
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:48 GMT
ETag: "a08-5c71d973cb1b9"
Accept-Ranges: bytes
Content-Length: 2568
Keep-Alive: timeout=300, max=491
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/bootstrap/js/bootstrap.min.js?ver=4.9.22
81.19.145.99200 OK 36 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/bootstrap/js/bootstrap.min.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (32405)
Hash 046ba2b5f4cff7d2eaaa1af55caa9fd8
b3f2ef9f985e7906c9360756b73cd64bf7733647
c8eeec83fe8bf655eeeda291466d268770436dde4e3e40416a85d05d3893e892
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/bootstrap/js/bootstrap.min.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "8a7c-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 35452
Keep-Alive: timeout=300, max=492
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/assets/js/main.js?ver=4.9.22
81.19.145.99200 OK 69 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/js/main.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash 61610fd62c101150c16a49dbb4daaa5d
0562fa6bc65eed85223df844698bf75eb2994df0
d477a346b54cbbd0d2150f9e1e000375a78aada523d6d033cc7e34fa8688d51c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/js/main.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:44 GMT
ETag: "10cad-56fb07f497100"
Accept-Ranges: bytes
Content-Length: 68781
Keep-Alive: timeout=300, max=492
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/jquery.jplayer.min.js?ver=4.9.22
81.19.145.99200 OK 56 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/jquery.jplayer.min.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (585)
Hash b8243f83e6b282019027be37f32c9920
d5bf2dc08e06374d25eac2d157f4860a4cb3c430
a67cc0b6dccfe90a9caad7265b4531a35e47eb08f3ad8586c7a33b37e72b7203
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/jquery.jPlayer/jquery.jplayer.min.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:49 GMT
ETag: "d9c2-56fb07f95bc40"
Accept-Ranges: bytes
Content-Length: 55746
Keep-Alive: timeout=300, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-includes/js/wp-embed.min.js?ver=4.9.22
81.19.145.99200 OK 1.4 kB URL HTTP/1.1 www.leiderbrueder.at/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:32:04 GMT
ETag: "56f-5bffd059711ee"
Accept-Ranges: bytes
Content-Length: 1391
Keep-Alive: timeout=300, max=490
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.1.1
81.19.145.99200 OK 19 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.1.1
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (18908), with no line terminators
Hash c5e511f15acc04bd75afa2e4364dea7c
5e42c5d1fa1b2f81481adb6dff8f5a2fe57f6937
8d9a46db80c58e316c5594342e8e62bb792d4706ae90d02e4af8a03218335117
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.1.1 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:47:50 GMT
ETag: "49dc-56fb09fd4bd80"
Accept-Ranges: bytes
Content-Length: 18908
Keep-Alive: timeout=300, max=491
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/js/app.js?ver=1.0.0.0
81.19.145.99200 OK 13 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/g5plus-framework/xmenu/assets/js/app.js?ver=1.0.0.0
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with CRLF line terminators
Hash c043ca5eb18a4d9fb761ed0ef5eac740
52b63fc19f732101c8cf27f0d92df1e2a2512972
c3bbf43ce1efa08729871f6bb6d1af5c17150129410570fbcc9c23b3723ce055
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/g5plus-framework/xmenu/assets/js/app.js?ver=1.0.0.0 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:13 GMT
ETag: "31c8-56fb07d706b40"
Accept-Ranges: bytes
Content-Length: 12744
Keep-Alive: timeout=300, max=491
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15357
Expires: Sun, 06 Nov 2022 08:24:47 GMT
Date: Sun, 06 Nov 2022 04:08:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15357
Expires: Sun, 06 Nov 2022 08:24:47 GMT
Date: Sun, 06 Nov 2022 04:08:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15357
Expires: Sun, 06 Nov 2022 08:24:47 GMT
Date: Sun, 06 Nov 2022 04:08:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15357
Expires: Sun, 06 Nov 2022 08:24:47 GMT
Date: Sun, 06 Nov 2022 04:08:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15357
Expires: Sun, 06 Nov 2022 08:24:47 GMT
Date: Sun, 06 Nov 2022 04:08:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3fDf4aoep5tTAusisXhIdAf0A6SbpM5fYtYaiXtNSb0-VRJo5nu8Vg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 06:27:59 GMT
age: 78051
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7d7b50-094b-4310-b5b5-ea1e3416ac1b.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7d7b50-094b-4310-b5b5-ea1e3416ac1b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21a48fab41e721ac5122531d37b8a6bf
14315b78c536168c93738009b01a1478e145021a
dc596ad450a27c2151d541125bf21258f38e209bbc3169ae497c367e3a8afc82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7d7b50-094b-4310-b5b5-ea1e3416ac1b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5022
x-amzn-requestid: f77253a1-c0f8-4909-80f5-d6c1de52d42a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabaFxtoAMF10Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-27570d6d5a6c2259017890e0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uprCD_xl7vWBIZ0pVmnbcAG-910vIWgZz5bPJ-Y37MXam4g4GTcXsw==
via: 1.1 feda34dcbf6a00e232656b7983c2c7f0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:04:29 GMT
age: 21861
etag: "14315b78c536168c93738009b01a1478e145021a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F740ccc73-b923-49b5-a3cc-5e21146cee4a.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F740ccc73-b923-49b5-a3cc-5e21146cee4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 425f4e7f6496e8ece483e05f40654687
df1997af30af72547a31e0c7d8c587891606cc9a
49876573e6da1a02a81290c16df77c169ca9aa50013a77f55bba67013a05ea57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F740ccc73-b923-49b5-a3cc-5e21146cee4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5862
x-amzn-requestid: 72cce604-5482-4007-8f77-44936d369a58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJb3jFBnoAMF1nQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d9c9-6870c2521f516af77b1812d1;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:46:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Xksr8R3AIY9B8r9o1tVmiV70psZcnwToXZ8nI5N-7WlzlGktWZRxRQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:49:02 GMT
age: 22788
etag: "df1997af30af72547a31e0c7d8c587891606cc9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.leiderbrueder.at/wp-content/themes/wolverine/assets/js/plugin.js?ver=4.9.22
81.19.145.99200 OK 9.0 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/js/plugin.js?ver=4.9.22
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6
GET /wp-content/themes/wolverine/assets/js/plugin.js?ver=4.9.22 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:44 GMT
ETag: "32c57-56fb07f497100"
Accept-Ranges: bytes
Content-Length: 207959
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa77f05b1af971db287607d9d9a30e0f
276f1493d6da74c8fa3ef83dee77bf48850ff4b4
005d0273b7fe7b68081d1db630df9444c4082140be87c34f3e9e5fb7db9a4160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14415
x-amzn-requestid: 9eadfbeb-38b2-483a-894a-375e00f646dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabgHcMoAMFTLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-104fa5e61c64aaf230ffb045;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zwi4Hg5iu5MB4zr0EFVhTRAvrnN2J1GnY31mOvlXJW0E_cgQu1gmgA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:12:38 GMT
age: 21372
etag: "276f1493d6da74c8fa3ef83dee77bf48850ff4b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 551796a02f4aaaa3665290e79bf3ce07
6bf2e0fabc3fa8140c81b72424dcf9d31180bf6b
43f8a845006da27ad3aaa6f898ed2f6de13ee3819f548f939c110e9f900c52ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7950
x-amzn-requestid: 706197c6-9e07-439f-8043-a44dc764cd77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabbEsaIAMFQgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-22c4d5632b6a8d013c858293;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UTajFS74mA4CEbGfHX7yyvx6_FpuFezaDwBrVA7MBSygLmoPrZcKrQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:49:01 GMT
age: 22789
etag: "6bf2e0fabc3fa8140c81b72424dcf9d31180bf6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.leiderbrueder.at/?custom-page=header-custom-css¤t_page_id=245
81.19.145.99200 OK 20 kB URL HTTP/1.1 www.leiderbrueder.at/?custom-page=header-custom-css¤t_page_id=245
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (13516)
Hash 1df98e43cb37629e4224de2ee555fc81
4017e9cecac8cae63d04294999e0b84382d35604
0ac96149a86f0ac8c6e7e0912bb60097c5e999d6865e9bd908ae7bbed9643449
GET /?custom-page=header-custom-css¤t_page_id=245 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://www.leiderbrueder.at/index.php?rest_route=/>; rel="https://api.w.org/"
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css; charset: UTF-8;charset=UTF-8
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.99200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.leiderbrueder.at
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 30928
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 03 Nov 2022 16:55:07 GMT
Expires: Fri, 03 Nov 2023 16:55:07 GMT
Cache-Control: public, max-age=31536000
Age: 213223
Last-Modified: Mon, 11 Jul 2022 18:57:39 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.99200 OK 46 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.leiderbrueder.at
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 46524
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 31 Oct 2022 22:48:22 GMT
Expires: Tue, 31 Oct 2023 22:48:22 GMT
Cache-Control: public, max-age=31536000
Age: 451228
Last-Modified: Mon, 18 Jul 2022 19:58:01 GMT
Content-Type: font/woff2
www.leiderbrueder.at/wp-content/uploads/2018/06/Leider-Br%C3%BCder-37-von-54-e1530188562734-blackwhite-e1530543811912.jpg
81.19.145.99200 OK 40 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/06/Leider-Br%C3%BCder-37-von-54-e1530188562734-blackwhite-e1530543811912.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1267x380, components 3\012- data
Hash d354f76f56440ba4f8bea5b347a84e93
0711f6d9b73ca7184be2cc1f6fcad546a2b4c87f
8759b43758fb4ad9b79c813730cf53256181ce1d922c369c06a5aa0aaac5693b
GET /wp-content/uploads/2018/06/Leider-Br%C3%BCder-37-von-54-e1530188562734-blackwhite-e1530543811912.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Mon, 02 Jul 2018 15:03:31 GMT
ETag: "9c66-57005802af6c0"
Accept-Ranges: bytes
Content-Length: 40038
Keep-Alive: timeout=300, max=489
Connection: Keep-Alive
Content-Type: image/jpeg
www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0
81.19.145.99200 OK 57 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/wolverine/assets/plugins/fonts-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.leiderbrueder.at/wp-content/themes/wolverine/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=4.9.22
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:46 GMT
ETag: "ddcc-56fb07f67f580"
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=300, max=492
Connection: Keep-Alive
Content-Type: font/woff2
www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.4.8
81.19.145.99200 OK 6.8 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.4.8
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type ASCII text, with very long lines (6758), with no line terminators
Hash 98f4e97f86b642bf082c65ae518ad010
e4e05eb15ee57f2cdb00a2a97419c02cfebb2732
5302d7ef47b197c6cc07e5db5152dcce3b6886ac18f727875fe78ba8e8129224
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.4.8 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 23:19:49 GMT
ETag: "1a66-5c71d973ee823"
Accept-Ranges: bytes
Content-Length: 6758
Keep-Alive: timeout=300, max=496
Connection: Keep-Alive
Content-Type: text/css
www.leiderbrueder.at/wp-content/uploads/2018/06/Leider-Br%C3%BCder-6-von-26-e1530543683681.jpg
81.19.145.99200 OK 32 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/06/Leider-Br%C3%BCder-6-von-26-e1530543683681.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x352, components 3\012- data
Hash 092bb67c8c6c4b4059df73d42e90281f
45404185d15b4da0de3ee54a531f386f55b1cba2
fd91e0914e6d90b6d36fb7edb7c5e17a51537a573e7e23c17a7695f65fb08781
GET /wp-content/uploads/2018/06/Leider-Br%C3%BCder-6-von-26-e1530543683681.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Mon, 02 Jul 2018 15:01:23 GMT
ETag: "7e7f-570057889d6c0"
Accept-Ranges: bytes
Content-Length: 32383
Keep-Alive: timeout=300, max=490
Connection: Keep-Alive
Content-Type: image/jpeg
www.leiderbrueder.at/wp-includes/js/jquery/jquery.js?ver=1.12.4
81.19.145.99200 OK 48 kB URL HTTP/1.1 www.leiderbrueder.at/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x425, components 3\012- data
Hash 084d22fa1265153ce6ee836b42f33d78
d8a33a5155072805142a3b1ee87af09776403f11
db4da377343e2bd36968b8cf345d47b66fffc908ca393d6ae1f56de97e12276a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:49 GMT
Server: Apache
Last-Modified: Thu, 05 Sep 2019 07:08:19 GMT
ETag: "17a6a-591c8fc7b9ec0"
Accept-Ranges: bytes
Content-Length: 96874
Keep-Alive: timeout=300, max=497
Connection: Keep-Alive
Content-Type: application/javascript
www.leiderbrueder.at/wp-content/themes/wolverine/assets/images/theme-options/logo.png
81.19.145.99200 OK 1.3 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/themes/wolverine/assets/images/theme-options/logo.png
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type PNG image data, 110 x 36, 8-bit colormap, non-interlaced\012- data
Hash 8650d2e94e8c718c3fcb42f4702ee7ce
2edd773e9d1a6015ce8cd168baec70307ce4d99f
e515b8e2554349e75c13b3561288f88cc50881708bfdedeb14427d4c13156260
GET /wp-content/themes/wolverine/assets/images/theme-options/logo.png HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Last-Modified: Thu, 28 Jun 2018 09:38:45 GMT
ETag: "512-56fb07f58b340"
Accept-Ranges: bytes
Content-Length: 1298
Keep-Alive: timeout=300, max=488
Connection: Keep-Alive
Content-Type: image/png
www.leiderbrueder.at/wp-content/uploads/2018/06/LeiderBruederLogoOnly.jpg
81.19.145.99200 OK 62 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/06/LeiderBruederLogoOnly.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Macintosh, datetime=2011:10:21 18:50:37], baseline, precision 8, 512x512, components 3\012- data
Hash 2d0977eb49b162a4e7f94bfe9cc31c46
07523c443b0dff94aa3f7603e1469c28b47ef65e
ff546020cb72433300ebb216b9e75ff4acb1676dca0b5a3c67e5d7be2537d811
GET /wp-content/uploads/2018/06/LeiderBruederLogoOnly.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Last-Modified: Fri, 22 Jun 2018 06:32:50 GMT
ETag: "f2cc-56f353368a880"
Accept-Ranges: bytes
Content-Length: 62156
Keep-Alive: timeout=300, max=491
Connection: Keep-Alive
Content-Type: image/jpeg
www.leiderbrueder.at/wp-content/plugins/so-widgets-bundle/icons/fontawesome/font/fontawesome-webfont.woff2?v=4.7.0
81.19.145.99200 OK 77 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/plugins/so-widgets-bundle/icons/fontawesome/font/fontawesome-webfont.woff2?v=4.7.0
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/so-widgets-bundle/icons/fontawesome/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.leiderbrueder.at/wp-content/plugins/so-widgets-bundle/icons/fontawesome/style.css?ver=4.9.22
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Last-Modified: Fri, 22 Jun 2018 13:18:42 GMT
ETag: "12d68-56f3adee6b080"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=300, max=495
Connection: Keep-Alive
Content-Type: font/woff2
www.leiderbrueder.at/wp-content/uploads/2018/07/Leider-Br%C3%BCder-16-von-23-e1530685169538.jpg
81.19.145.99200 OK 93 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/07/Leider-Br%C3%BCder-16-von-23-e1530685169538.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1026x502, components 3\012- data
Hash b55055ae646d1b9685ea0d5bb67672c7
eb707f36b24c36528c6a0f3821913c3c7ab11f9c
25dddebf5f8f8c257ef22fc111266316bc221e2db3a568b68aa0d6eeee422d6f
GET /wp-content/uploads/2018/07/Leider-Br%C3%BCder-16-von-23-e1530685169538.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:50 GMT
Server: Apache
Last-Modified: Wed, 04 Jul 2018 06:19:29 GMT
ETag: "16a90-5702669c2de40"
Accept-Ranges: bytes
Content-Length: 92816
Keep-Alive: timeout=300, max=490
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a4c41658aac46d55b3b75236a94edc2
ac376767fe6bdf396ad981e3c25fe97ded45710e
ab1adf8a8e7f14eb2c21f0d80dcb7134806d2a9c5aee7419cd3cb1a92a1d2313
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB1ADF8A8E7F14EB2C21F0D80DCB7134806D2A9C5AEE7419CD3CB1A92A1D2313"
Last-Modified: Fri, 04 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 06 Nov 2022 10:08:51 GMT
Date: Sun, 06 Nov 2022 04:08:51 GMT
Connection: keep-alive
www.leiderbrueder.at/wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-192x192.jpg
81.19.145.99200 OK 6.6 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-192x192.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash c192aae22abaa4236b444b1068dc69b0
4bb7c1b9c2c944cde145a48a470f4de606a0f0e1
e8e583e222cbcb99489ff7b68ee21092713aefe729daa2e1dd625c4c987bebec
GET /wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-192x192.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Last-Modified: Fri, 22 Jun 2018 06:32:56 GMT
ETag: "19a3-56f3533c43600"
Accept-Ranges: bytes
Content-Length: 6563
Keep-Alive: timeout=300, max=490
Connection: Keep-Alive
Content-Type: image/jpeg
www.leiderbrueder.at/wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-32x32.jpg
81.19.145.99200 OK 1.3 kB URL HTTP/1.1 www.leiderbrueder.at/wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-32x32.jpg
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 51c8911d96128bc6ae5a6213bc642b87
e636b91adc978e3dd3bbd4937d83953c6adb126b
81b01e18465dcc08f501da8a9e864ceb749db831e12fc51ec7d9162c49c61de1
GET /wp-content/uploads/2018/06/cropped-LeiderBruederLogoOnly-32x32.jpg HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Last-Modified: Fri, 22 Jun 2018 06:32:56 GMT
ETag: "4e3-56f3533c43600"
Accept-Ranges: bytes
Content-Length: 1251
Keep-Alive: timeout=300, max=492
Connection: Keep-Alive
Content-Type: image/jpeg
js.developerstatss.ga/stat.js?v=n4
193.3.19.36200 OK 232 B URL HTTP/1.1 js.developerstatss.ga/stat.js?v=n4
IP 193.3.19.36:0
ASN #50340 OOO Network of data-centers Selectel
File type ASCII text, with no line terminators
Hash 7448a3ef784057491ceda69e9fe3ccfa
807a15beb610afc6f31fbed5e5c999bc7d8e78ab
a4d047f35dca17fdba166df206ec4a15ea72035dc0f8f351bedf1df6fd99c986
Analyzer Verdict Alert quad9 Sinkholed
GET /stat.js?v=n4 HTTP/1.1
Host: js.developerstatss.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/7.4.26
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.leiderbrueder.at/?wc-ajax=get_refreshed_fragments
81.19.145.99200 OK 511 B URL HTTP/1.1 www.leiderbrueder.at/?wc-ajax=get_refreshed_fragments
IP 81.19.145.99:0
ASN #38955 World4You Internet Services GmbH
File type JSON data\012- exported SGML document, ASCII text, with very long lines (511), with no line terminators
Hash 7ad58488e0daf954e8f165802fe7d40c
4005f87762d9c86d81f90fb9473f4cf5423c40f3
500fee0fcb50f4ee8cb8a9c9090298c431b1ba4ae1d952a4080dea9775476532
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.leiderbrueder.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://www.leiderbrueder.at
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Cookie: PHPSESSID=d2ahcjnv277ebl9t4ciukhhla9
Content-Length: 0
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:51 GMT
Server: Apache
Pragma: no-cache
Access-Control-Allow-Origin: http://www.leiderbrueder.at
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Keep-Alive: timeout=300, max=494
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f5d3ca3cffafd8dadf133810ad7e4d0
8bed7b8d0336eafa839a12298b100f40d80c92f2
d037aa6017a59df20973025bcc574ef26bfe195b11c658ad8963f423cf46cdbe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D037AA6017A59DF20973025BCC574EF26BFE195B11C658AD8963F423CF46CDBE"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2914
Expires: Sun, 06 Nov 2022 04:57:26 GMT
Date: Sun, 06 Nov 2022 04:08:52 GMT
Connection: keep-alive
bro.kim/nobody.php
193.3.19.36200 OK 693 B IP 193.3.19.36:0
ASN #50340 OOO Network of data-centers Selectel
Hash a2175be72e39e5e6899be90684f72649
006d72a4a95c645248975849ccfa4de0d4c71f14
ebb00b9be234e94598bd32120d9458e31681bd7f117c90e7b755df1c843e8755
GET /nobody.php HTTP/1.1
Host: bro.kim
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.leiderbrueder.at/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 04:08:52 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/7.4.26
Strict-Transport-Security: max-age=31536000; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8