Overview

URLmarcklejbor.de/
IP 138.201.56.111 (Germany)
ASN#24940 Hetzner Online GmbH
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-25 01:31:36 UTC
StatusLoading report..
IDS alerts0
Blocklist alert89
urlquery alerts No alerts detected
Tags None

Domain Summary (24)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-24 10:18:11 UTC 142.250.74.174
js.hs-banner.com (3) 2426 2020-03-26 17:45:21 UTC 2022-11-24 09:21:52 UTC 172.64.154.85
r3.o.lencr.org (7) 344 No data No data 23.36.76.226
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
cdnjs.cloudflare.com (1) 235 2015-04-17 20:46:33 UTC 2022-11-24 06:13:12 UTC 104.17.24.14
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168
tfb9b20b2.emailsys1a.net (1) 0 No data No data 185.71.125.3 Domain (emailsys1a.net) ranked at: 155351
forms.hsforms.com (1) 5160 2018-03-07 15:21:13 UTC 2022-11-24 09:21:54 UTC 104.16.86.5
js.hscollectedforms.net (1) 5697 2018-01-10 15:37:15 UTC 2022-11-24 09:21:52 UTC 104.17.131.171
js.hsleadflows.net (1) 4609 2018-01-10 15:14:10 UTC 2022-11-24 09:21:52 UTC 104.17.231.204
marcklejbor.de (127) 0 No data No data 138.201.56.111 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.148.84.125
fonts.gstatic.com (3) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
ocsp.pki.goog (6) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
fonts.googleapis.com (7) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
forms.hubspot.com (1) 3593 2014-03-21 07:12:37 UTC 2022-11-24 09:21:52 UTC 104.19.154.83
region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-24 06:15:58 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
ocsp.digicert.com (9) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
secure.gravatar.com (3) 1671 2012-05-22 05:36:38 UTC 2022-11-24 07:27:56 UTC 192.0.73.2
img-getpocket.cdn.mozilla.net (3) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
js.hs-analytics.net (1) 2411 2013-10-01 15:49:45 UTC 2022-11-24 09:21:52 UTC 104.17.70.176
js.hsadspixel.net (1) 3795 2018-01-11 01:40:17 UTC 2022-11-24 09:21:54 UTC 104.17.116.176

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-25 2 marcklejbor.de/ Phishing
2022-11-25 2 marcklejbor.de/ Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets/common/src/resources/css/co (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/beaver-builder-lite-version/fonts/fontawe (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/svg-support/css/svgs-attachment.css?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/woocommerce/assets/css/woocommerce-layout (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets/common/src/resources/css/to (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ve (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/rapidmail-newsletter-software/css/widget. (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/woo-paypalplus/public/css/front.min.css?v (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/uploads/bb-plugin/cache/11989-layout.css?ver=56c1 (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/all.css?ver=1574 (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/woocommerce-germanized/assets/css/layout. (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxs (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/js/tooltipster/css/tooltips (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/responsive/layou (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/css/icons.css?ver=2.2.5 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/css/animations.css?ver=2.2.5 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/essential-grid/public/assets/css/settings (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/revslider/public/assets/js/revolution.too (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/css/responsive.css?ver=2.2.5 Phishing
2022-11-25 2 marcklejbor.de/wp-includes/css/dashicons.min.css?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/beaver-builder-lite-version/fonts/fontawe (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ve (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/js/build/sticky-header.mi (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/jetpack/modules/wpgroho.js?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/hoverIntent.min.js?ver=1.8.1 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carou (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/icons/icomoon.woff2 Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/widgets/general. (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/responsive/layou (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.1 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxs (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/revslider/public/assets/fonts/font-awesom (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/t (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/l (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/l (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/n (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/p (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/n (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/p (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/a (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/widgets/nav-menu (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/a (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/m (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets/common/src/resources/js/tri (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/m (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/m (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/cubeportfolio/js/jquery.c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/b (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/g (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/b (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/g (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/n (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/n (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/o (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/c (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/o (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/rapidmail-newsletter-software/js/widget.j (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/eu-cookie-law/css/style.css?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets-plus/src/resources/js/meta. (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 Phishing
2022-11-25 2 marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/responsive/mobil (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/js/functions.js?ver=2.2.5 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/kiwi-logo-carousel/custom-styles.css?ver= (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/backbone.min.js?ver=1.4.0 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets/common/src/resources/js/und (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets-plus/vendor/jquery.cookie/j (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/event-tickets/common/src/resources/js/und (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.7.3 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/jetpack/_inc/build/spin.min.js?ver=1.3 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/woocommerce/assets/css/woocommerce-smalls (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/jetpack/modules/carousel/jetpack-carousel (...) Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/wp-embed.min.js?ver=5.3.14 Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/ninja-forms/assets/css/display-structure. (...) Phishing
2022-11-25 2 marcklejbor.de/wp-content/plugins/booked/assets/js/tooltipster/js/jquery.to (...) Phishing
2022-11-25 2 marcklejbor.de/?wc-ajax=get_refreshed_fragments Phishing
2022-11-25 2 marcklejbor.de/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 138.201.56.111
Date UQ / IDS / BL URL IP
2023-01-27 01:33:01 +0000 0 - 0 - 44 caretower.de/ 138.201.56.111
2023-01-21 01:34:23 +0000 0 - 0 - 4 timetracker.neovision.de/ 138.201.56.111
2023-01-15 01:37:34 +0000 0 - 3 - 0 sofia.neokunde.de/ 138.201.56.111
2023-01-14 01:31:44 +0000 0 - 0 - 84 marcklejbor.de/ 138.201.56.111
2023-01-14 01:28:25 +0000 0 - 0 - 1 root1.neovision.de/ 138.201.56.111


Last 5 reports on ASN: Hetzner Online GmbH
Date UQ / IDS / BL URL IP
2023-01-30 02:09:24 +0000 0 - 0 - 3 democracianacional.org/docs/2a3ee1dd030074ec8 (...) 144.76.84.139
2023-01-30 02:02:45 +0000 0 - 1 - 0 download.bome.com/BomeNet1.5.0.exe 138.201.54.42
2023-01-30 01:58:49 +0000 0 - 0 - 35 notiws.gr/ 5.9.8.16
2023-01-30 01:56:52 +0000 0 - 0 - 1 dj-upd.tech/ 49.12.160.144
2023-01-30 01:41:34 +0000 0 - 1 - 0 www.compdigitec.com/labs/files/isxunpack.exe 116.203.63.70


Last 4 reports on domain: marcklejbor.de
Date UQ / IDS / BL URL IP
2023-01-14 01:31:44 +0000 0 - 0 - 84 marcklejbor.de/ 138.201.56.111
2022-12-29 01:31:41 +0000 0 - 0 - 93 marcklejbor.de/ 138.201.56.111
2022-11-25 01:31:36 +0000 0 - 0 - 89 marcklejbor.de/ 138.201.56.111
2022-09-08 01:34:38 +0000 0 - 0 - 85 marcklejbor.de/ 138.201.56.111


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-14 01:31:44 +0000 0 - 0 - 84 marcklejbor.de/ 138.201.56.111
2022-12-29 01:31:41 +0000 0 - 0 - 93 marcklejbor.de/ 138.201.56.111
2022-11-18 01:35:33 +0000 0 - 0 - 89 marc-klejbor.de/ 138.201.56.111
2022-10-22 01:35:33 +0000 0 - 0 - 94 marc-klejbor.de/ 138.201.56.111
2022-09-08 01:34:38 +0000 0 - 0 - 85 marcklejbor.de/ 138.201.56.111

JavaScript

Executed Scripts (91)

Executed Evals (2)
#1 JavaScript::Eval (size: 4) - SHA256: 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408
this
#2 JavaScript::Eval (size: 4421) - SHA256: 8fd7f74b72ac7a1e0e2a1a36001f1a62cea6c86f8c7614a02f3d4c5467fef9d5
__webpack_require__.r(__webpack_exports__);

// CONCATENATED MODULE: ./resources/js/plusFrameView.js
var FRAME_SELECTOR = 'ppplus';
/**
 * Retrieve the configuration from the json string attached to an element
 * @param frameElement
 * @returns {*}
 */

function appConfigurationFromElement(frameElement) {
        if (!frameElement) {
            return null;
        }

        try {
            return JSON.parse(frameElement.dataset.config);
        } catch (e) {
            return null;
        }
    }
    /**
     * Setup the PayPal Application
     * @returns {*}
     */


function bootstrapPayPalApp() {
        var frameElement = document.querySelector("#".concat(FRAME_SELECTOR));
        var appConfiguration = appConfigurationFromElement(frameElement);

        if (typeof PAYPAL === 'undefined') {
            return;
        }

        if (!frameElement || !appConfiguration) {
            return;
        }

        return PAYPAL.apps.PPP(appConfiguration);
    }
    // CONCATENATED MODULE: ./resources/js/front.js


(function(jQuery, _) {
    window.addEventListener('load', function() {
        // Isn't possible to listen on a jQuery event by using `addEventListener`
        jQuery(document.body).on('updated_checkout', function() {
            bootstrapPayPalApp();
        });
    });
})(jQuery, _); //# sourceURL=[module]
//# sourceMappingURL=data:application/json;charset=utf-8;base64,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
//# sourceURL=webpack-internal:///4

Executed Writes (0)


HTTP Transactions (184)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         138.201.56.111
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 25 Nov 2022 01:31:25 GMT
Content-Length: 162
Connection: keep-alive
Location: https://marcklejbor.de/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3314
Expires: Fri, 25 Nov 2022 02:26:39 GMT
Date: Fri, 25 Nov 2022 01:31:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5324
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 01:31:25 GMT
Last-Modified: Fri, 25 Nov 2022 00:02:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Fri, 25 Nov 2022 02:59:57 GMT
Date: Fri, 25 Nov 2022 01:31:25 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 01:17:22 GMT
cache-control: public,max-age=3600
age: 843
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ZqXzxKyOoHgL0lZk4TumPoLjnWrI4+5cXQREaBfEmTdnK3Br/CHrSpZhnMUZ4w9Dc2+eyrdqTPA=
x-amz-request-id: D9P74B19J9CXS6WA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 00:43:37 GMT
age: 2868
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:25 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D825975A58615036F42122DE8B4F841D35025045D314B60170365E0FBF4A353"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21569
Expires: Fri, 25 Nov 2022 07:30:54 GMT
Date: Fri, 25 Nov 2022 01:31:25 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 01:11:11 GMT
cache-control: public,max-age=3600
age: 1214
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4830
Cache-Control: max-age=118554
Date: Fri, 25 Nov 2022 01:31:26 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:27:20 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TEbyFz8RJUWx44lFfScqcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.84.125
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VLp0INAh8fQC3qFiGBNcbQiv4a8=

                                        
                                            GET / HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 56029
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://marcklejbor.de/wp-content/themes/mk/vamtam/assets/css/dist/responsive/layout-max.css?ver=1574230728>; rel=preload; as=style, <https://marcklejbor.de/wp-json/>; rel="https://api.w.org/", <https://marcklejbor.de/>; rel=shortlink
x-et-api-version: v1
x-et-api-root: https://marcklejbor.de/wp-json/tribe/tickets/v1/
x-et-api-origin: https://marcklejbor.de
x-tec-api-version: v1
x-tec-api-root: https://marcklejbor.de/wp-json/tribe/events/v1/
x-tec-api-origin: https://marcklejbor.de
set-cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; path=/
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.3.27, PleskLin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9632)
Size:   56029
Md5:    ddaff415b539e338ff1d6fb87cc69050
Sha1:   affcdbece23413abb6fd83568e11eb2690edb2e8
Sha256: c9422dd1ca4edeee6ed9a7198fb341188406e59d2cdf93b487276ae1799360f2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.2.6.1 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 2855
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-4c34"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2585079
expires: Wed, 15 Nov 2023 01:31:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ttzlLImFYtjiBCyN69teYNHhBnz00WAgyJ5%2FWvENGyeW0o2132mRCoyZgaG%2BD%2FKid2cD3P8T8bRVmRD%2BW4Kg0jmJgFQXT4Z1cbZEzMBabeacqIV64Ki9vO8rh2eF%2FMxiMyH1Y49S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f69ff89baab511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2855
Md5:    bf1391b615ae5584f9dd9ce0dadf80d8
Sha1:   5c1ac10b4ced91893f7ead8ccae6144b24e16005
Sha256: 61ed77d9060b46122faab2a431b523f33353943595600c7fed2238155fd462d5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/event-tickets/common/src/resources/css/common-skeleton.min.css?ver=4.9.22.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:10:47 GMT
etag: W/"5dd44c47-5ddb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24027), with no line terminators
Size:   4845
Md5:    e60191d5cdbaaae68523b7f5f4ac64a9
Sha1:   a550a0b5d5f759ff2564ee0329b9fdc91b4c52bf
Sha256: fc36b3b550e1802ed2028150d1446b4f87d13c1256837138ff26f26df4dbf267

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/css/v4-shims.min.css?ver=2.2.6.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:45:54 GMT
etag: W/"5dd44672-6801"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26440)
Size:   45811
Md5:    8b294ac4fd117a8382cfcf2ea9dc7a6f
Sha1:   d03fcf59c36c65e78257671f7e692081a85523ff
Sha256: d1c31ccdf3eae645c64099031028f0433be5c956c7ef9791483cc796ce096094

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/05/HeaderBG_Blau.jpg HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 30979
last-modified: Thu, 23 May 2019 11:08:00 GMT
etag: "5ce67f10-7903"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x600, components 3\012- data
Size:   30979
Md5:    4905e57fbd7e7527bf5b0cc77a6283ca
Sha1:   8eaec2c8d112f536398b50b4ef7d51f2d727a17f
Sha256: d91b58be1c98787fc4b3c6c953b137afe90b809b9232e5244a3148956a2b1f81
                                        
                                            GET /wp-content/plugins/svg-support/css/svgs-attachment.css?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:42:16 GMT
etag: W/"5dd461b8-de"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   23665
Md5:    5d48027065c8e46724dfe15fc2512b44
Sha1:   d8e248c0a4c6803d5bc62ed44bdb34099ab63c4d
Sha256: 248daa4222a73256c575f8b9d385ed8e6ff3b265e4296909a67496197b930df8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/06/amazon-logo_DE_transparent-1.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 8476
last-modified: Wed, 19 Jun 2019 11:58:02 GMT
etag: "5d0a234a-211c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 580 x 280, 8-bit colormap, non-interlaced\012- data
Size:   8476
Md5:    1fe7fd2abd953e4dd3bb98f7915d9843
Sha1:   d2b4fed7fa4a7d3572e0250f82d79981877ca694
Sha256: bfe6b73e6ac037c93de7f13967ad8aec49367e65e513722ed3e6aa367179f767
                                        
                                            GET /wp-content/uploads/2019/05/HeaderBG_Gelb.jpg HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 29802
last-modified: Thu, 23 May 2019 11:30:28 GMT
etag: "5ce68454-746a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x600, components 3\012- data
Size:   29802
Md5:    2db914869f171d11264510e56c77c0a0
Sha1:   d567df02570d603d68acb2d7993afbbe2c27ffc7
Sha256: bfa0892f32e45695fc4da5cd6c63398040b0bac61ea916151f802e707f5f0f56
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:18:38 GMT
etag: W/"5dd45c2e-dc16"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602)
Size:   16853
Md5:    7da583bc344d96a710864d411f768d0b
Sha1:   9505bffbc85a56e93e92cc8b1f95c55f76c555fd
Sha256: 1621ad886511f8d47b029b17d8be471cdc2704c45b3a42dfa681e2585bf6a5f0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 15 Jul 2021 15:50:36 GMT
etag: W/"60f0594c-409e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16542), with no line terminators
Size:   10173
Md5:    23ac8c79cebe38cceacc080caa1dca83
Sha1:   6619bc3baee80c3154fed2b499cf15a5ba4c274d
Sha256: f0cda31a64ebbf0bc8031c9a85db12e027c6372173179b3290b314c975eb2b16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/02/UtePapst.jpg HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 3037
last-modified: Mon, 17 Feb 2020 06:37:08 GMT
etag: "5e4a3494-bdd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x160, components 3\012- data
Size:   3037
Md5:    04b94896243b55f05d14c982f03cb91e
Sha1:   8f9b783228502c7938f3ffc9199fcae5f8e539e5
Sha256: 1de24cb92013dc2073630f2c54a6c2804f2781601f8ded069e167a14342295bc
                                        
                                            GET /wp-content/plugins/event-tickets-plus/src/resources/css/tickets.min.css?ver=4.10.10 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:56:52 GMT
etag: W/"5dd45714-1475"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5237), with no line terminators
Size:   4689
Md5:    42df665b553f4e969ec39f5f6e57b21b
Sha1:   69569e98380af68de1d6aba2097fe869ee5d2d9d
Sha256: b1b145719f1512c43a2fae7d905f06fcde9a2e20a30c271c5bba03fbe852b724
                                        
                                            GET /wp-content/plugins/event-tickets/common/src/resources/css/tooltip.min.css?ver=4.9.22.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:10:47 GMT
etag: W/"5dd44c47-663"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1635), with no line terminators
Size:   2579
Md5:    4f2518d605e3c60e52b92d4317b93727
Sha1:   0188e761f7649fb5886c154c3c4bcdda9559539e
Sha256: cee62577abc8893354d6e09d83b3f87a0c4e343a5f0f5ca1a66d3273d72a8b1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.8.2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 15 Jul 2021 15:50:36 GMT
etag: W/"60f0594c-f4cd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Size:   11493
Md5:    54035957b44f20f47ff7f4cd05358985
Sha1:   cc866af002bd100df3c9296582a7dde7bdac6b4b
Sha256: f6a343bc9bede8a504437d050d973fb1499335177340fc3ee2bd6592f058086b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/rapidmail-newsletter-software/css/widget.css?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Fri, 07 Jun 2019 08:33:32 GMT
etag: W/"5cfa215c-34d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5037
Md5:    090f471d1462524fde65e2e05917dcc9
Sha1:   481ccce7b43a94681b2b10f23f5ed1d59e11d48a
Sha256: 345fb5589da5ebed423d81b8d1f7dca2d8d03e1264d83f222a6048900e43b907

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woo-paypalplus/public/css/front.min.css?ver=1574196117 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:41:57 GMT
etag: W/"5dd45395-119"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   6825
Md5:    04c8183e2387a318e044d01eb04ce984
Sha1:   d0bc9d488e10b58ee6439e11b0c5688af68e2aae
Sha256: 826b80178f6c25e1de5d7d49536d3b55b326ba306d1a646e17cd9f43f5c93f6a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/11989-layout.css?ver=56c1233a8126be055cad2002d850dbd3 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 10 Feb 2022 11:26:20 GMT
etag: W/"6204f65c-c61c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50716), with no line terminators
Size:   801604
Md5:    2cb88112f63b4196535e3a0a722eea28
Sha1:   2cbc1372370138d5f1d4e9e44c5ad048804bac3e
Sha256: bceddfeec1ae0292aa593fcf2f120a7dd0bfc4fd058dd843c5e470ebfcbec2c7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/06/Buch-Mockup_Vorne.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 213244
last-modified: Wed, 19 Jun 2019 11:52:30 GMT
etag: "5d0a21fe-340fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size:   213244
Md5:    7b4408edd866f51e618b4f408ecc94ba
Sha1:   1e97bf9224708cbbc0cf8dc651d38dabe28c5528
Sha256: f8a5a3ef829152bdd8bd2954942bedba97f06d9678b31df8a8817e7e6aeb8236
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2019/06/SMK_Heftchen-Einzel.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 133691
last-modified: Wed, 19 Jun 2019 11:52:44 GMT
etag: "5d0a220c-20a3b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 600 x 384, 8-bit/color RGBA, non-interlaced\012- data
Size:   133691
Md5:    ab6e3143f4c6e1702249aa2add7fe04b
Sha1:   49e72bd0f93755e3c56f8a7816cd30bbd54f6793
Sha256: 0769cf2dff70594cbc2c340152458b8a7013cdd85dfe281a61861789b7528525
                                        
                                            GET /wp-content/uploads/2019/11/Rituale-der-Wertschaetzung-Frei.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 234512
last-modified: Wed, 06 Nov 2019 09:26:40 GMT
etag: "5dc291d0-39410"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 900 x 900, 8-bit/color RGBA, non-interlaced\012- data
Size:   234512
Md5:    17a9013e11f53902c3247221ca5d8805
Sha1:   5f1908077a00b946fd67f073ee113cb434b55dcb
Sha256: 7a4bca3e9b6daa14d9989b655f866865e9c49de7aedffd85f7a3928055362220
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Mon, 28 Oct 2019 11:03:49 GMT
etag: W/"5db6cb15-17a69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   36331
Md5:    c10afcec39d1394f1bc974075c6d34af
Sha1:   a00b381b92b3bd949b5adec501fd83a0fad3ed1c
Sha256: 6e57fbf11a996e3502e3d74fc70442cce56f065574acce12cd5752b6978a1363

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/pum/pum-site-styles.css?generated=1574243312&ver=1.8.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Wed, 20 Nov 2019 09:48:32 GMT
etag: W/"5dd50bf0-3ce1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8260), with CRLF, LF line terminators
Size:   11363
Md5:    e5bc14b7c77a2c2a7200c579b932c044
Sha1:   1f67b3afc104787e5a19eea610d10ade199da413
Sha256: c59514044889ad10e168fedc5278a91956428ba62da52bffabd8e96d7b1cfee2
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/css/dist/all.css?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:30:11 GMT
etag: W/"5dd45ee3-33d5a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   39514
Md5:    a7b21287a4c348df81d67dd28cecb826
Sha1:   99a891dfd6c5915be0376172e3a20713f33909c6
Sha256: 11e63e93554de3843033fb331e3da7d5afb2d440616d5ec2bb0b309d37d273c4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce-germanized/assets/css/layout.min.css?ver=3.0.5 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:47:23 GMT
etag: W/"5dd454db-a38"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2616), with no line terminators
Size:   11835
Md5:    2be60bf6d7544620bc213daaf19aa178
Sha1:   1bd9278c2a81f4fc7bb6ba92e4e2a92aa390a575
Sha256: 25c5869c0ed04b1898a24b1261ed81c070dab7c8fe7392fc7bcbf60e66bd98c7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Mon, 29 Jan 2018 14:38:18 GMT
etag: W/"5a6f31da-2748"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   13292
Md5:    ad83ce6cf2dcebfb92292f817540e0cf
Sha1:   8f7c3e292a1ce368bfde16a665ec57424e3362c2
Sha256: 9fa5230949ac77e677a64e8b9c109f884bbefa6bb280e9d0828b42257685b326

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxslider/jquery.bxslider.css?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Mon, 29 Jan 2018 14:22:19 GMT
etag: W/"5a6f2e1b-e18"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5051
Md5:    73b142de3555fa5f15b10370f05c6a0d
Sha1:   95a29d8d4b6e556102abc2b2eb6c6aa1cf9b5a8e
Sha256: 539bb5a2c4942a3f7201d4626c4f6990f196298dfbaf35ca17b0fb02439559bf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/css/all.min.css?ver=2.2.6.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:45:54 GMT
etag: W/"5dd44672-da9f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55782)
Size:   31725
Md5:    75cf503b60fafc2f91f5d290910268bd
Sha1:   cc9d62a72d0e090aaaf658bea87e12785778360d
Sha256: 2915781c43813a6da505772ca5c0b739c70a8f6457c2aa6cb7d5eda5998901b8
                                        
                                            GET /wp-content/plugins/booked/assets/js/tooltipster/css/tooltipster.css?ver=3.3.0 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-237d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   8829
Md5:    b367f2ded9ef04f289b2c4fa0c28f467
Sha1:   0f3aadaa99e3b62a4f4f9529a894028808b52a1b
Sha256: f078fa8a6a47848065a16fb7058e5e0ea4cee058ed2574ae450af5e8d264e189

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-240082682-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 01:31:27 GMT
expires: Fri, 25 Nov 2022 01:31:27 GMT
cache-control: private, max-age=900
last-modified: Fri, 25 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43682
Md5:    aad647bf3df1da04f66671cb229333d5
Sha1:   5ba7650d66098080759f854cd8d6936546baee20
Sha256: b35c4ad9cc9eee785fe15bb5d5126580bc15437e72e184372582468457ad1d36
                                        
                                            GET /wp-content/plugins/booked/assets/css/styles.css?ver=2.2.5 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-ccca"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (531)
Size:   13511
Md5:    8a8caedd6397846f6ef716eec664c330
Sha1:   b23845bf0482b3c94200d4172262f7514f270671
Sha256: 79d9626c1bbd28ea0f0ab322b4a97fc87ffe4a26d97e76600fc6b3d86e9513ed
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/css/dist/responsive/layout-max.css?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:30:23 GMT
etag: W/"5dd45eef-52f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1327), with no line terminators
Size:   6587
Md5:    2efc62444d28f2c1d343cc5ee9ff296d
Sha1:   abddbf5e9f91c8bb29d23d0bd3f83c6884e2e45b
Sha256: e8117fbc9a02021f438cd62717c94457b657eac838182501d069e9e5282f9321

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/booked/assets/css/icons.css?ver=2.2.5 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-2b20"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11040), with no line terminators
Size:   17400
Md5:    effb5fd891847e5296441e405afd1b6e
Sha1:   79259bc840b9005f5f1d9b80202813196e28d56c
Sha256: 1f4510396009a66d1c051032e5551dddb81df07199f5dc413793fdf911f10ffc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/booked/assets/css/animations.css?ver=2.2.5 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-ec2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   7009
Md5:    3e21ecce036f70cc1fb5b0b2b626d97a
Sha1:   3f7e82f7088d6d1356dac348f891b1d06716eaed
Sha256: deb6f8228c4b4a9b31fbfa422b4489cafecb0cb5114f65340a0d07c5e34c3234

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=2.1.6.2.2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Mon, 29 Jan 2018 14:27:06 GMT
etag: W/"5a6f2f3a-abbb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (7136)
Size:   15471
Md5:    fb1c8ce30f9c4ce9e7b85172dc3a3ffe
Sha1:   18906f2308f38d4febaf093d1a87a257072e32a7
Sha256: 06291ef27c115a63714e35bced663d0c392103ec805e026d4d4cd4fcf2edc363

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9265
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 01:31:27 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/booked/assets/js/tooltipster/css/themes/tooltipster-light.css?ver=3.3.0 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-16d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   18226
Md5:    c55224c2ada91133e1f67766de4c307b
Sha1:   fe0927a5b93adb0164c599562a9cac1c10c785c9
Sha256: 503d7fdf238fba3bca5ac2b7f693bec4e0b116e8a6479dfb827dafbd5c8c562b
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:18:39 GMT
etag: W/"5dd45c2f-24c1a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32017)
Size:   59430
Md5:    2e6db01991e78dfcc91a02b15a3b9fa6
Sha1:   82625c81a3e8740d0a4ed0d2be7e80ab4ea84d8c
Sha256: c9f63ee55f75655f8a6c1331fd5d6f7425a14d48ed7135b0cf96119329e48772

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/gprofiles.js?ver=2022Novaa HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.0.73.2
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Fri, 02 Dec 2022 01:31:27 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24043), with no line terminators
Size:   7894
Md5:    3990330ee93af8e7f07cc775c3ad841c
Sha1:   ab4eee4f6d6209f111ae8ab39106d5da6175d34c
Sha256: 6971cf5712e1d365b40a56e81c8c1aed5e354e49e329c2d9162114d46b1d0dac
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9265
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 01:31:27 GMT
Connection: keep-alive

                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 11 Jun 2020 03:51:18 GMT
etag: W/"5ee1aa36-a055"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (41045), with no line terminators
Size:   14735
Md5:    68f698f2553bc1954aa250883aa905e4
Sha1:   82b8f995b7dabddafff8e460f9f233c33c97f26d
Sha256: f4f348229b3c92cc421e6dfab6242859cd27764f8b319df186c2a3c62cf17d3e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/booked/assets/css/responsive.css?ver=2.2.5 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 19:51:17 GMT
etag: W/"5dd447b5-2581"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   8468
Md5:    d701a4e5746afb981688acb29dc8d521
Sha1:   8a8531662e50110ac04c36794c0d0a984c1a4117
Sha256: 7decd780d286e0dbfaabd2ac54b1b1297b8ab3def8b2914a376e04e6ba46e966

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 15 Apr 2021 03:54:20 GMT
etag: W/"6077b8ec-b9cc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47529)
Size:   38793
Md5:    7088daf5c64a28f9be2a5066961c1ad6
Sha1:   2beb48d7e02384b1a0ccff17bbcd35e5446bf360
Sha256: cbe3cf2a18538a25462919a7725191bef13b641ad14212f004eb6e43925146a2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=5.3.14 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 01:31:27 GMT
date: Fri, 25 Nov 2022 01:31:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6816
Md5:    2a7d7a934fa80b4baabce4af40c09281
Sha1:   6670d931505132854bea5537d82cd8d206d63568
Sha256: 560532494430afd469b83715549b9d8de2be587abfc16698423bcf0d693a6a08
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8917
x-amzn-requestid: 10f3b269-9437-476d-ae4f-a0ac3fb78491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wEIwoAMF8uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4cfeecf4553b26381ed11875;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6ibPrCdDNQqWzxiVYDsl87yUfTP8sUmu22GbhBdDHJruil0qxbw7Fw==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:00 GMT
etag: "2eba66ff6539388c48562503e8d11ff0e060350a"
age: 14187
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8917
Md5:    5863138af1ddbba34a7856242a7b3a06
Sha1:   2eba66ff6539388c48562503e8d11ff0e060350a
Sha256: d1543e1b803a07095148b743925eebbbf21f566a2df9b785a1a9d48c5604496c
                                        
                                            GET /wp-content/uploads/2017/11/Ludwig-Erhard-Preis.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 20488
last-modified: Mon, 29 Jan 2018 16:55:19 GMT
etag: "5a6f51f7-5008"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 160, 8-bit/color RGB, non-interlaced\012- data
Size:   20488
Md5:    38f052aac627d1bd76b86e55b3d0f15d
Sha1:   a326457202aa07b7908c6fecddde7118eaf934a9
Sha256: 5818772db19f9e6776dc29548394790dc83c1ea333b95dd6758d679016515466
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9265
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 01:31:27 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/uploads/2017/11/TopUnternehmer.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
content-length: 13807
last-modified: Mon, 29 Jan 2018 16:55:17 GMT
etag: "5a6f51f5-35ef"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 160, 8-bit colormap, non-interlaced\012- data
Size:   13807
Md5:    c3035e552ccc7453cceb5b67fe29201a
Sha1:   4d07c2a38b3dc2684a7bbd4ca0dfe58963e7b184
Sha256: 457be820376feb3fab5da9791b7a20a7601466ce149f10bf3209c162fbed4f53
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 01:31:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9264
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 01:31:28 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11586
x-amzn-requestid: df9d2675-0615-4993-83ab-87cdac30c05f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JyoGElIAMFh-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2343-315ac9210f212c9134ffa103;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:39 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: snfgherDVfBenP9XouMzFtaWfXLh4TeiwDmEb0hQh5L9Ww57Hkxl3g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:30:43 GMT
age: 10845
etag: "46ee95ebee3d60f64d2b7f568673b13ea27a42a3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11586
Md5:    c6b9b5ebc32235ed8f3e15df013963f0
Sha1:   46ee95ebee3d60f64d2b7f568673b13ea27a42a3
Sha256: 4fdf6f239f6931442d93a00acd8af1f5192f77143885945c27e137ef3683338e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 65841
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /css?family=Montserrat|Acme HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 01:31:27 GMT
date: Fri, 25 Nov 2022 01:31:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7126
Md5:    b7d41691386acd3eb61bf6255c90ea4c
Sha1:   05273ab8c9c7d529f49b5390d9643ad9b8e1187b
Sha256: b5a210172b3a7801c464cccfbf182e5e6e7aa84d989495c3591f5167a3ba49a0
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/common.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:28 GMT
etag: "5dd45ef4-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/css/all.min.css?ver=2.2.6.1
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 13580
last-modified: Tue, 19 Nov 2019 19:45:54 GMT
etag: "5dd44672-350c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13580, version 329.-1049\012- data
Size:   13580
Md5:    e07d9e40b26048d9abe2ef966cd6e263
Sha1:   c744217caa82b3245cffa2714aaf2ec9f749614d
Sha256: 6a16c04229bc2b4da226eb97e68d94f49ba6437b7b5e16c14a101b21a29384e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.4.21 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:24:13 GMT
etag: W/"5dd44f6d-14ed7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   29266
Md5:    65c6b3716d0a465da366ba83f3d33e1e
Sha1:   efd5bbeefaac49e4e48605bf027ce698ca7802c2
Sha256: 1cb620ab1d37733e4a5b6abd9b4eb33805a0cb18fe75a912c3fc726df97139e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/js/build/sticky-header.min.js?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:30:19 GMT
etag: W/"5dd45eeb-1ae8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6888), with no line terminators
Size:   2438
Md5:    08eddcb5d2d791207b6988b3b4a235a1
Sha1:   647bdd30698cceeaecdc14b08a2e041b5f5b42da
Sha256: 8b18a7f56f0833be4d6232671fb5fc7b352ca77f98430030924599c161668b47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/jquery.spin.min.js?ver=1.3 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Fri, 04 Jun 2021 15:51:46 GMT
etag: W/"60ba4c12-70e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1652)
Size:   1100
Md5:    918ffa13904f9cdb3477c293f2373cf3
Sha1:   00e98c236fbf850cd374ea6ef51aa0b929e3881e
Sha256: 1873160a6dfdd5e42ab9bcf11f7cd5d0e43e42686c5cb369f71c17c97541793a
                                        
                                            GET /wp-content/plugins/jetpack/modules/wpgroho.js?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Fri, 04 Jun 2021 15:51:46 GMT
etag: W/"60ba4c12-42e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   916
Md5:    56b8250dd9fe55571f2a783a0aa092cc
Sha1:   9b93c2768ce1ffc592de3b0c90d84f6411044f9e
Sha256: 41ec8e224110772dd632d6f431f3569e5f2091f366b901533f9809b39c8f5308

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://marcklejbor.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 31870
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Thu, 15 Apr 2021 03:54:20 GMT
etag: W/"6077b8ec-43f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1087), with no line terminators
Size:   896
Md5:    cb7708f0afef83b89eed6381f9953595
Sha1:   b27a80bf96192f4074f6ef69c4925ed92cc6755e
Sha256: bbe85b023b156a9ad083d8526fcdebe1a050bb6db99679730b773cf84d101795

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvr6Hw5aXo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://marcklejbor.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 01:51:48 GMT
expires: Sun, 19 Nov 2023 01:51:48 GMT
cache-control: public, max-age=31536000
age: 517180
last-modified: Mon, 11 Jul 2022 18:58:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12504, version 1.0\012- data
Size:   12504
Md5:    c030ea950ca658fc7f7fd1979293031d
Sha1:   8b57cb0365ae9322beb1b6bf3b924b19d3bc939b
Sha256: 23fa3192fda79020a8061b67e508b986bf6be01efbf4bdf90c526c3b2949207c
                                        
                                            GET /wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1574243312&ver=1.8.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Wed, 20 Nov 2019 09:48:32 GMT
etag: W/"5dd50bf0-bdd3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (48457)
Size:   31365
Md5:    d4a8184c691a22120b8e9bcacc567ef2
Sha1:   5193b1a9f22243b41d923ebe0ed576e953bd6968
Sha256: c210d47830d2a64fa1646d302c45ef63a1a90916a3e0130b8b5a02b1f602e359
                                        
                                            GET /s/rufina/v13/Yq6V-LyURyLy-aKCpB5l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://marcklejbor.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 22:01:45 GMT
expires: Fri, 24 Nov 2023 22:01:45 GMT
cache-control: public, max-age=31536000
age: 12583
last-modified: Wed, 27 Apr 2022 16:35:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Size:   12860
Md5:    3126bf0305ed41842246c38788cf4a88
Sha1:   ab5a6f11c50bc0b76c54526199394baaea5cacbc
Sha256: 59864f2329405ef7d6948fe3e99745c971702cd2954469101e85f380f7bcb5aa
                                        
                                            GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js?ver=20190102 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Fri, 04 Jun 2021 15:51:46 GMT
etag: W/"60ba4c12-6d82"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27910)
Size:   7542
Md5:    b0460a9e78978a50c6079bce1c60d5d6
Sha1:   0b46ee64bfededc9730dbc64521250427cf35e6f
Sha256: cc4123e4dd4e5973dc5429ec66959f598a5b0ff228c6f91e33d077919a0c1ae8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/icons/icomoon.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 67284
last-modified: Tue, 19 Nov 2019 21:30:17 GMT
etag: "5dd45ee9-106d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 67284, version 1.0\012- data
Size:   67284
Md5:    2c006a72b8c568b62d8ec2df333e5d5a
Sha1:   419bef47f8089b55822322f536d96b167b41c3ba
Sha256: 3614ebfac788f033b5945bdacc90bd8d8af97a10043b48088cb419870db7009e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/13853-layout-partial.css?ver=8e864466a4c07887ba41566a9b160d15 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 08 Sep 2020 15:52:02 GMT
etag: W/"5f57a8a2-3036"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12342), with no line terminators
Size:   42994
Md5:    85411e6a670b987a76f744e79c410e33
Sha1:   6d6a5177cbf499f6c5dee1cb3306a2c9b041dedb
Sha256: e33e1203f1df24fc551984f1340c461bb9f7a94247a8082e4f4d3653fb17650c
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/css/dist/widgets/general.css?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:30:24 GMT
etag: W/"5dd45ef0-b97"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2967), with no line terminators
Size:   5678
Md5:    be35c84fe92d31345bd800b636f29882
Sha1:   b48f1a5dad2e371acde348b6dff306ab793713d0
Sha256: c41acfe9a137f326e8755cbc1dbcbaaa9ecb057a9777d4161a8ef75af905f399

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/css/dist/responsive/layout-below-max.css?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
last-modified: Tue, 19 Nov 2019 21:30:23 GMT
etag: W/"5dd45eef-4225"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16933), with no line terminators
Size:   77229
Md5:    0ea31c7d5a0bba950f2b8bf960509186
Sha1:   945b40ca6890d1eb484635fdbef1afafef9a4466
Sha256: e89d87b2e7eed322870e65e6bc86f1272f63ac7765e04cc4e8dd05206bfc30ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/eu-cookie-law/js/scripts.js?ver=3.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:10:08 GMT
etag: W/"5dd44c20-b90"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   108517
Md5:    85260981cab956faef65eced29b1154d
Sha1:   bc407c067c402e3bf15340623a44c393a61bc715
Sha256: f0930b2234d27fc42c891f4aa7e05b043aa2513af898256b8aaa3050c352d7b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5597
Cache-Control: max-age=96662
Date: Fri, 25 Nov 2022 01:31:28 GMT
Etag: "637edba9-117"
Expires: Sat, 26 Nov 2022 04:22:30 GMT
Last-Modified: Thu, 24 Nov 2022 02:49:13 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxslider/jquery.bxslider.js?ver=5.3.14 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Mon, 29 Jan 2018 14:22:18 GMT
etag: W/"5a6f2e1a-c0e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   11390
Md5:    98d1cf87756e9843c6f3196eb67d7cda
Sha1:   03de08082832117395aa0139e27ddfae25c1e1fb
Sha256: c316d5e3811e6082b1469428708cd7a715f2a8c68c4062b29dfb695666136588

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 77160
last-modified: Tue, 19 Nov 2019 21:21:33 GMT
etag: "5dd45cdd-12d68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=147180
Date: Fri, 25 Nov 2022 01:31:28 GMT
Etag: "637fb6dc-116"
Expires: Sat, 26 Nov 2022 18:24:28 GMT
Last-Modified: Thu, 24 Nov 2022 18:24:28 GMT
Server: nginx
Content-Length: 278

                                        
                                            GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 7536
last-modified: Tue, 19 Nov 2019 21:18:43 GMT
etag: "5dd45c33-1d70"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size:   7536
Md5:    04eb8fc57f27498e5ae37523e3bfb2c7
Sha1:   d942ae11706c3f7e511e3c49b0e4574d7ad199c4
Sha256: f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
                                        
                                            GET /wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxslider/images/bx_loader.gif HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/plugins/kiwi-logo-carousel/custom-styles.css?ver=5.3.14
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 8581
last-modified: Mon, 29 Jan 2018 14:27:30 GMT
etag: "5a6f2f52-2185"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 32 x 32\012- data
Size:   8581
Md5:    931bdb6b50816b03206c66921760b246
Sha1:   f67f91dafbe0f846c8f8f67a005497d8bdea188a
Sha256: 6d46e2cf165a5a0584afba7bc9663da292ee08c97cfc7613de6013ed05be892a
                                        
                                            GET /wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxslider/images/controls.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/plugins/kiwi-logo-carousel/third-party/jquery.bxslider/jquery.bxslider.css?ver=5.3.14
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 1363
last-modified: Mon, 29 Jan 2018 14:27:30 GMT
etag: "5a6f2f52-553"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 96 x 63, 8-bit colormap, non-interlaced\012- data
Size:   1363
Md5:    927dd81e9b476f47339e70b50c74a45b
Sha1:   b9d85dad0ea4084a41af01053840a791fc9c916b
Sha256: c8f1af507306f0b4b9173615c45d89bb8aba1f7a622096bfd35358b8d31dd5dc
                                        
                                            GET /wp-content/uploads/2017/11/shape-bg.jpg HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/wp-content/uploads/bb-plugin/cache/11989-layout.css?ver=56c1233a8126be055cad2002d850dbd3
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 2949
last-modified: Fri, 13 Sep 2019 14:41:27 GMT
etag: "5d7baa97-b85"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x539, components 3\012- data
Size:   2949
Md5:    b394ad0fc8ee92baeed33fa3cba3a40c
Sha1:   54fd6674c2c230585b3701821515a1865dd1edc2
Sha256: 848b93b13c6c453cb2890040d42347e983566201484c66706dce6ac5f4c54737
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=133512
Date: Fri, 25 Nov 2022 01:31:28 GMT
Etag: "637f8178-117"
Expires: Sat, 26 Nov 2022 14:36:40 GMT
Last-Modified: Thu, 24 Nov 2022 14:36:40 GMT
Server: nginx
Content-Length: 279

                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/tattoo.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:30 GMT
etag: "5dd45ef6-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/landscaping.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=133512
Date: Fri, 25 Nov 2022 01:31:28 GMT
Etag: "637f8178-117"
Expires: Sat, 26 Nov 2022 14:36:40 GMT
Last-Modified: Thu, 24 Nov 2022 14:36:40 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /images/main/framework/icons/error.gif HTTP/1.1 
Host: tfb9b20b2.emailsys1a.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tfb9b20b2.emailsys1a.net/79/1943/293cc110de/subscribe/form.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         185.71.125.3
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
vary: Accept-Encoding
last-modified: Thu, 24 Nov 2022 15:27:48 GMT
etag: W/"637f8d74-7fa"
expires: Fri, 09 Dec 2022 01:31:29 GMT
cache-control: max-age=1209600
x-rm-node: w2
x-rm-bal: bal1
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7197
Md5:    8dad1bc308a77c532801a58b574889d7
Sha1:   84d11568984a0be5e06992c18a8869d491bddc75
Sha256: 5f7995747ffcdcfc882452e91700b004cfe3a2845349b3b480fc5d88dae5ccb5
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/landscaping.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 7284
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-1c74"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 7284, version 1.0\012- data
Size:   7284
Md5:    3eaf9fc64caa891b4e2c7753912973bc
Sha1:   7b027263700282e71d12d6b75b6a040fac222d7a
Sha256: 48efbcdcb1bdfa135f01e1c797b933bd432dec52cb9700b327c346fe91dcbe38

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2220
Cache-Control: max-age=165282
Date: Fri, 25 Nov 2022 01:31:29 GMT
Etag: "637ff4e7-117"
Expires: Sat, 26 Nov 2022 23:26:11 GMT
Last-Modified: Thu, 24 Nov 2022 22:49:11 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /wp-content/uploads/2017/02/cropped-mklogo_512x512-192x192.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 13486
last-modified: Mon, 29 Jan 2018 17:08:37 GMT
etag: "5a6f5515-34ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Size:   13486
Md5:    95a81038b2e70bf26956f46e500c150d
Sha1:   0b532c0566575ea3b7d71674aba58600066f4ac6
Sha256: de3c04ac223a5c8eeefdad4fc748cdf3fcb183ff73bb644930692f04420283d4
                                        
                                            GET /wp-content/uploads/2017/02/cropped-mklogo_512x512-32x32.png HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 1329
last-modified: Mon, 29 Jan 2018 17:08:37 GMT
etag: "5a6f5515-531"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size:   1329
Md5:    6f0a6ef264d5cc19edf273c14a23ed83
Sha1:   3600f4d658c183356b0ad65f45c5537f25c19ea8
Sha256: ee90b0c3088c5ec52442a38448ee4806f0b140e3db0561599578fc704f8a315d
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 25 Nov 2022 00:41:08 GMT
expires: Fri, 25 Nov 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 3021
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/nex.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/pur.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:30 GMT
etag: "5dd45ef6-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/nex.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.1.530746509.1669339889
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 3612
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-e1c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 3612, version 1.0\012- data
Size:   3612
Md5:    35e29963d0193655e1a2d54925c79ed1
Sha1:   e6deefa596ecd73685b028324fd60b0658393633
Sha256: f4a1c9fa446f274eab749d667b401b38bb0a0d4c0b202af3ad1ad5a264abf12c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/pur.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 9044
last-modified: Tue, 19 Nov 2019 21:30:30 GMT
etag: "5dd45ef6-2354"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 9044, version 1.0\012- data
Size:   9044
Md5:    6c1ec30132d4817862e0d1e1a3a677e3
Sha1:   dc5589b89058d03fb301381db841b68dddbfdfdb
Sha256: 52b082479681910674fc4778f6e377df104e05fe969dbba9842d18b098e06a8a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2868
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 01:31:29 GMT
Last-Modified: Fri, 25 Nov 2022 00:43:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/alis.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:27 GMT
etag: "5dd45ef3-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/css/dist/widgets/nav-menu.css?ver=1574230728 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 21:30:24 GMT
etag: W/"5dd45ef0-288"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (648), with no line terminators
Size:   11029
Md5:    8247af8443dbd003ef915e772f03050c
Sha1:   81144ab15e036c26bd52b6d402cc2acb7a3f6923
Sha256: 7b12f7c121425bb98dcf4ac140e2d84ffd9872f23ef021859d1ea3daee7fa896

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /collected-forms/v1/config/json?portalId=7330122&utk= HTTP/1.1 
Host: forms.hubspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://marcklejbor.de
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.19.154.83
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Fri, 25 Nov 2022 01:31:29 GMT
vary: origin
x-hubspot-correlation-id: de5adde5-e223-42bf-9865-b56133f11736
access-control-allow-credentials: false
access-control-allow-origin: https://marcklejbor.de
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=y23P6DS1xUnZRMZLbucyW0p8JzeksTwZdepV0jCrhCs-1669339889-0-AbjD3rh2vXoebsXRzi44uwIIPmUUddX0LCZn93MS1C8bU5vu1BWD5jgxpO8IehtM40v0n5WO8mkaOAUNyVwi0mg=; path=/; expires=Fri, 25-Nov-22 02:01:29 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HGbmm9ygelMyGLCBzPKWxTk41zJHdRncGRGh957agV7KI9ijhRLbfpn9r1KcYvCF4Md0dhmmb6CeYfoW5D4MkIGRS%2BKpi%2Fljsdtrf0XLPyzM99K1vg9mMprMHbkvMXAuGrUO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f6a006af1e1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   382
Md5:    f7dd959e65188a0413cefd074ec0f2af
Sha1:   a845db7903ee1b499450f9bda3db39e2f907b45f
Sha256: cd88b98baf74eff0aed230c301b84e6f13c244be6e356eea5f184128beb436d3
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/alis.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 30176
last-modified: Tue, 19 Nov 2019 21:30:27 GMT
etag: "5dd45ef3-75e0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 30176, version 1.0\012- data
Size:   30176
Md5:    79562edc7b100f06d4cb8b92e73f82e1
Sha1:   f5a8f0710e8c3d990bcd393b5146d55a521b1d95
Sha256: 7bcfee79853adda5d98bf2180095bd68996ed5908939450e9d4e249a6cb21225

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/morz.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 11540
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-2d14"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 11540, version 1.0\012- data
Size:   11540
Md5:    9f0451cc8500eae33fa0f79fe3b33c90
Sha1:   499e6f63d7166bfd87457d57db50b09a7bbf57e7
Sha256: 4b0f6fbfbe9d9d11d75da984639cba5978e71f6546c4cf5b17933b8eb9170ae8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/event-tickets/common/src/resources/js/tribe-common.min.js?ver=4.9.22.1 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:27 GMT
last-modified: Tue, 19 Nov 2019 20:10:47 GMT
etag: W/"5dd44c47-141"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (321), with no line terminators
Size:   405
Md5:    133ea823946c0828af0366e9f437855b
Sha1:   c19aad64e8f4854a351a94b0a7e28eeca341b9a7
Sha256: f976379cd29d812b066e14d688e4f1c26d7f5a7e7662a375c9c3253198c1c220

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/music.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:29 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /analytics/1669339800000/7330122.js HTTP/1.1 
Host: js.hs-analytics.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.70.176
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 25 Nov 2022 01:31:29 GMT
x-amz-id-2: 6tcoP09Nx/XASZjkEH7L10u6blOenOyjZZGK0I3HvZXjEbfwsXiHL9RAssmlkN/pIxo2gIBOS8k=
x-amz-request-id: ZR9G4PVTJN59X97T
last-modified: Fri, 04 Nov 2022 20:37:39 GMT
etag: W/"e558fc5854e77f423285505551c5b186"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Fri, 25 Nov 2022 01:36:29 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 76f6a005af740b69-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64108)
Size:   20156
Md5:    ee816b670f6632be73314c8759696f4c
Sha1:   64967a32a42601020fa9924661707b4f8ddc2cda
Sha256: b3b3914a7863bb6b08b61a464de63ff81616c616e3731e09389868f4ff32186c
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/music.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:30 GMT
content-length: 3160
last-modified: Tue, 19 Nov 2019 21:30:29 GMT
etag: "5dd45ef5-c58"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 3160, version 1.0\012- data
Size:   3160
Md5:    77465a495ccc26649b36de0d5eb0eabd
Sha1:   a742db78896f9b2e64097c9919ee514d4ebb1da6
Sha256: 0aa14a862c0d4c53eef90e9924819634b5bf51eb344db1b93cd5b3cf31ee553b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
last-modified: Tue, 19 Nov 2019 21:30:16 GMT
etag: W/"5dd45ee8-13f5b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65259)
Size:   20491
Md5:    0d05dedafe7c2928882f3950638401aa
Sha1:   51456fcb553b88d192e6ebc3c933020cbc23eb0c
Sha256: 233a8d62efc93cf793db11b9cf9e84b0c5ae8e0aad98e3f4f3e65f0a3cbe0af7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/clany.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:30 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:28 GMT
etag: "5dd45ef4-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /dist/css/hovercard.min.css?ver=2022Novaa HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.73.2
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
last-modified: Wed, 11 Nov 2020 15:57:10 GMT
etag: W/"5fac09d6-1e86"
content-encoding: br
expires: Fri, 02 Dec 2022 01:31:28 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7814), with no line terminators
Size:   1779
Md5:    3555064199575a9cc7b6cc9bf089b11e
Sha1:   00e72e3ac3730aa23c9b8f6041706de360e96692
Sha256: 856ad569724fc247d433caff3625e2c2a693f3520de18bcedb57b22a79fe5af4
                                        
                                            OPTIONS /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://marcklejbor.de/
Origin: https://marcklejbor.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.64.154.85
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Fri, 25 Nov 2022 01:31:30 GMT
content-length: 0
access-control-allow-origin: https://marcklejbor.de
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f6a0064f920b51-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/clany.woff HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:30 GMT
content-length: 3112
last-modified: Tue, 19 Nov 2019 21:30:28 GMT
etag: "5dd45ef4-c28"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 3112, version 1.0\012- data
Size:   3112
Md5:    f61a08fda7a61018a047d04417d0a3b2
Sha1:   f1ed37a7073e9876fc068f1f4782ac04a6b027c7
Sha256: c5b93a1993be12e301f99eb87a05e943b84db1d49401747d15e8c9f894e4bad3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /dist/css/services.min.css?ver=2022Novaa HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marcklejbor.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.0.73.2
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:28 GMT
last-modified: Thu, 22 Mar 2018 09:46:04 GMT
etag: W/"5ab37b5c-a54"
content-encoding: br
expires: Fri, 02 Dec 2022 01:31:28 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2644), with no line terminators
Size:   6034
Md5:    2204929037cc5b9fa118c6d148896993
Sha1:   cf425824b31ee2e3d1a637c17ec5d8a445a1c18a
Sha256: d47a2af6ab30fb1795db9af83ae4666acf0001781b75bc5297837c7a09b51a18
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/byra.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marcklejbor.de/
Cookie: PHPSESSID=n7s5l4ogeo4f3ijuiinpjq2e75; _ga_XWB81L4WMP=GS1.1.1669339889.1.0.1669339889.0.0.0; _ga=GA1.2.530746509.1669339889; _gid=GA1.2.1271412490.1669339889; _gat_gtag_UA_240082682_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         138.201.56.111
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Fri, 25 Nov 2022 01:31:30 GMT
content-length: 0
last-modified: Tue, 19 Nov 2019 21:30:28 GMT
etag: "5dd45ef4-0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/mk/vamtam/assets/fonts/theme-icons/split/gast.woff2 HTTP/1.1 
Host: marcklejbor.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5