gesunde-zelle.com/
85.13.133.60301 Moved Permanently 234 B IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b670b7710229c2f86924a12c7dbd4ae9
8f3ae082390ce39eaf2559ed5451a6ae93aac32d
553e6b87e60af1e9f7d2e11d4fb9f2d542afe2005484acadd8d1bdb197a89c21
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 09:13:09 GMT
Server: Apache
Location: https://gesunde-zelle.com/
Content-Length: 234
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 09:10:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fchl0HIdyhA1U93CZuKqUL4UmQ8CxP9RkwKQMB7neOXziExKJaY8vw==
Age: 143
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2526
Expires: Fri, 16 Sep 2022 09:55:15 GMT
Date: Fri, 16 Sep 2022 09:13:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _WhfI5SvwrvFyItANbvvYSE7bVmE1uIqHSgskmP04NnY9xpTCXVMlA==
age: 16674
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 09:13:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ab14d2bd68f5aa1320a59425b9f625af
37e5c321ee35bb750a608861f6f99a6dacb9bc86
8a662198c8d8d42380bb680f87e06cf0c81135f11fbacb7e398775a78ececead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A662198C8D8D42380BB680F87E06CF0C81135F11FBACB7E398775A78ECECEAD"
Last-Modified: Wed, 14 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Fri, 16 Sep 2022 15:13:06 GMT
Date: Fri, 16 Sep 2022 09:13:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 09:12:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Gi1pahXgrVp4U_IlUbdMzrqfhndqhWGjz4b5lT5LspHQCoZhyAysDg==
Age: 588
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:10 GMT
Last-Modified: Fri, 16 Sep 2022 08:04:25 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7TjsMzYprfqWd/nzHLDwzw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2rzv7yKVdYQAxoGeXyevb3TBd9I=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gesunde-zelle.com/wp-content/themes/phlox/css/auxin-icon.css?ver=2.10.0
85.13.133.60200 OK 7.9 kB URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/css/auxin-icon.css?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (448)
Hash 1533d354a90f1ffd4253c205bb82faef
ea044c092eaf20d1c5ccdbee4d37e87012675aa6
dac4a2da9e1199f6ff4f1ff9e86c85736161193d6fb0dad7c6d02000e5cf9c18
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/phlox/css/auxin-icon.css?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "d3bf-5e77417ee513e-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 7929
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.1.30
85.13.133.60200 OK 5.1 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.1.30
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (64930), with CRLF, LF line terminators
Hash 2a48026c8ff1ccb5becac8a976670378
618cb077942baeff12e84855bcf0704367e2398e
4e579a5f3a3529dd512779c108bfd5c6a28e25ef90ffc63e42a2427d7212f15c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/shapepress-dsgvo/public/css/bootstrap-grid.min.css?ver=3.1.30 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "fe82-5e6e6f61b9c73-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5103
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/css/base.css?ver=2.10.0
85.13.133.60200 OK 18 kB URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/css/base.css?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (448)
Hash e0439808aca0a455afbe1cb4eb657b46
1f0474ba2c14998bdb1c9b86c019c8f24556c5ee
2a5d0791138f2abc4513d499902205e552421a8ad0c5af94d4a05c3ea82a7a5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/phlox/css/base.css?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "2c7d6-5e77417ee513e-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 17576
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.min.css?ver=3.1.30
85.13.133.60200 OK 938 B URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.min.css?ver=3.1.30
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (3537), with no line terminators
Hash f7ba48df78935f60f6a70cb2cdfb655e
aa3a9e137a0596abb24a2b15deb65c443b54c0f5
652442535843906feb3c8af258d0be7d4264f4ef226f5a83d6020b14b05c9046
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-public.min.css?ver=3.1.30 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "dd1-5e6e6f61b8cd2-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 938
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/simplebar.min.css?ver=6.0.2
85.13.133.60200 OK 722 B URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/simplebar.min.css?ver=6.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (2898), with no line terminators
Hash 3358e8b4714189668c99d9977792dfeb
b12998c989218fe28cae9d12da8c064a0f3462c0
05ee53cfd2362adf0a8e9b5962fe448a7d8b8a13b96166222518e6987d3d173f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/shapepress-dsgvo/public/css/simplebar.min.css?ver=6.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "b52-5e6e6f61b8cd2-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 722
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/css/other/elementor.css?ver=2.10.0
85.13.133.60200 OK 196 B URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/css/other/elementor.css?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash ceb0231d18f33f824f937d0141f82c1e
a2dfa06ad2cbb7b8130c1d76534327edb9a92219
9cb24ef2e90bba8c4d12fbb6f9c1e65bb2b01141c58a7ce63cdad6ffa2dd2bb1
GET /wp-content/themes/phlox/css/other/elementor.css?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "4f0-5e77417ee31fe-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 196
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gesunde-zelle.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.6
85.13.133.60200 OK 18 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (65497)
Hash 15be65ea8d5bb2522ed75b289e56dc97
ff5b52fbcf0cd08bdae6baaaeb5c8ce922a57bfd
6d3193bad2fca39039b332f74254087c1c8764b51ea11602342e178aff27307c
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "28722-5e8bfc8b738df-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 18455
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.6
85.13.133.60200 OK 742 B URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (13766)
Hash bbab514648a6c860596a3e584aa80ad5
f19e05db605f653728a96bd2e8e2f1b2524a77de
539edc55c757958e9cee7a756281dcb94aac65edef46c93a61f6700074404d79
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "35ed-5e8bfc8b75820-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 742
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/elementor/css/post-5887.css?ver=1646944837
85.13.133.60200 OK 251 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/elementor/css/post-5887.css?ver=1646944837
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (706), with no line terminators
Hash b644b8bfdf1dbf7296990d34c92de9ea
806e6d849da021cd4a7c9bcee05f8f03b10ba7e3
1138806b9bd041856ae2d82b43525fb1969a17c54ef6a7bc7c20d1f912c3b4b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-5887.css?ver=1646944837 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:40:37 GMT
etag: "2c2-5d9e339fb1d89-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 251
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/elementor/css/global.css?ver=1646944837
85.13.133.60200 OK 655 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/elementor/css/global.css?ver=1646944837
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (4009)
Hash 099c574e24f3bb580aacbd01e2f1c7a3
660c7505195d4e4e49a8bcc5e064eee3e91fd8ae
ce8eff651503edf36d58f9093ea8638250bb601f8fc4c73dd47f6b0f91b132de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1646944837 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:40:37 GMT
etag: "189e-5d9e339fea7c6-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 655
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
85.13.133.60200 OK 11 kB URL HTTP/2 gesunde-zelle.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 23:36:06 GMT
etag: "15b64-5e3a421e80084-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 10912
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/elementor/css/post-245.css?ver=1646950383
85.13.133.60200 OK 1.8 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/elementor/css/post-245.css?ver=1646950383
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (23517), with no line terminators
Hash 4f42a72b5742ae2c70efb5cf168d6a33
37904145db4ca10169fc1daa90e261f385f38554
87040c7993d41dc06323607b69f18379a7ccb9dd16fca1f3841c1bf99eaeffa8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-245.css?ver=1646950383 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 22:13:03 GMT
etag: "5bdd-5d9e484934c79-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1779
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/elementor/css/post-7121.css?ver=1655802280
85.13.133.60200 OK 482 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/elementor/css/post-7121.css?ver=1655802280
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (2281), with no line terminators
Hash 60281a6ab295148c60fde9d271bc9324
acd15f48d49a8d953a66d881a2c6166da99e8aae
1924e3c6dcb7d89c68260a87796890fc10a223f3ac3cacfa77ffa494a57601b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-7121.css?ver=1655802280 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jun 2022 09:04:40 GMT
etag: "8e9-5e1f182b98b39-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 482
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/auxin-elements/admin/assets/css/elementor-widgets.css?ver=2.10.3
85.13.133.60200 OK 75 B URL HTTP/2 gesunde-zelle.com/wp-content/plugins/auxin-elements/admin/assets/css/elementor-widgets.css?ver=2.10.3
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash 489d21c63587a0f52a23571102b51fc3
f3024c51698920436cd11676d8c0b87108859fbe
1194e0e1accb7245f205e21d97b3fe125c4e7c0b1b3f5e7ca5dd4400bf3b3473
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/auxin-elements/admin/assets/css/elementor-widgets.css?ver=2.10.3 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:03 GMT
etag: "6d-5e77417bacd82-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 75
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/elementor/css/post-5886.css?ver=1646944837
85.13.133.60200 OK 476 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/elementor/css/post-5886.css?ver=1646944837
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (2951), with no line terminators
Hash ff6d3c672a84df68b4d47e55613d5fbb
5a6b3e7f5059cb00baf7f424d19bb9adeeaf0864
5fc4021952a0e2a2c96a4fcb9c0168031ba75ec07c0277093418001ea7d298b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-5886.css?ver=1646944837 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:40:37 GMT
etag: "b87-5d9e339ffb166-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 476
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/phlox/custom.css?ver=6.4
85.13.133.60200 OK 970 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/phlox/custom.css?ver=6.4
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash 719d69ab4e7c9b3ac0e1fae67d0bc0a6
1aea62779b65ddd795d569ea5da38eafdb02e7e4
b8bac389ebdade8e1dcdbe9966a29181fd55785043d9bff1a1a5aac1f6ac0e27
GET /wp-content/uploads/phlox/custom.css?ver=6.4 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 11 Sep 2022 10:55:08 GMT
etag: "1269-5e8649cd10d77-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 970
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
85.13.133.60200 OK 4.6 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 18:12:23 GMT
etag: "48b9-5e20d475da28e-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
85.13.133.60200 OK 982 B URL HTTP/2 gesunde-zelle.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jan 2020 23:47:35 GMT
etag: "105a-59c0e198665a6-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 982
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.min.css?ver=3.1.30
85.13.133.60200 OK 2.1 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.min.css?ver=3.1.30
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (10351), with no line terminators
Hash fdc570997391f80498719301ea88981f
fbef1fb1c68a7998e840d8feb1807ac89ec15e45
76dac2f721ff0b084e93b40035667cb4a39b03769be30f97ec8bfb34696134c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/shapepress-dsgvo/public/css/sp-dsgvo-popup.min.css?ver=3.1.30 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "286f-5e6e6f61b9c73-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2129
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
85.13.133.60200 OK 2.4 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Feb 2021 14:55:42 GMT
etag: "2bf8-5bb8969b74689-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2397
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
85.13.133.60200 OK 3.6 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (19233)
Hash 52a31a69ccd34259a9e31cdf89c9de5e
67d00dd4def92676ff44f068be03017c3541e771
d41fde284583338b624559dfe4c27324b291ff82c6423b95c7d64f139a86c444
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "4b4f-5e8bfc8b6cb7f-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3629
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
85.13.133.60200 OK 4.0 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Feb 2021 14:55:42 GMT
etag: "2bd8-5bb8969b7e2c9-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3998
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.min.js?ver=3.1.30
85.13.133.60200 OK 4.3 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.min.js?ver=3.1.30
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (17169), with no line terminators
Hash c7c405560ccf3aeb1d92cee25cd58acb
6cdd8e9ad36e10394b4c132240cebb149ace566e
18e2fbaffb11526a50b356b8f3e04274dc1e56dc905d0e05f8c68242c1f3e4cd
GET /wp-content/plugins/shapepress-dsgvo/public/js/sp-dsgvo-public.min.js?ver=3.1.30 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "4311-5e6e6f61b9c73-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 4299
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
85.13.133.60200 OK 6.7 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (30837)
Hash 3bca42e5004726d89ebdea033d8ae93f
629b1195ec0fa24286d5d6a06fe319c139a4872f
1f3dde16a1674c2dcc2af76809687ed4ab30a42c4a3097fb6d53b6115fbd294b
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "7917-5e8bfc8b6fa5f-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 6662
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/js/solo/modernizr-custom.min.js?ver=2.10.0
85.13.133.60200 OK 5.9 kB URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/js/solo/modernizr-custom.min.js?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document, ASCII text, with very long lines (19371), with no line terminators
Hash ba67772075cb5d6524c6ec77812a0922
5c8f92521c98be2d85a316720535312596887e76
2dd4bc0372b85b64d0bafb0dc0d9adb32a0b9fd8cd22996b7fe06faa74e92900
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/phlox/js/solo/modernizr-custom.min.js?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "4bab-5e77417ee60de-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5935
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
85.13.133.60200 OK 30 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 15 Aug 2021 20:40:24 GMT
etag: "15db1-5c99f180cb180-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 30310
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/Logo_Gesundezelle_500x199.png
85.13.133.60200 OK 12 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Logo_Gesundezelle_500x199.png
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type PNG image data, 500 x 199, 8-bit colormap, non-interlaced\012- data
Hash f0df18bd3aea1411b9bbc61ddebf139c
10ba0ada007c8a78266b6c23795d6c4df3206822
2d6dcee509567381d069d09d3935e0e837c8984cc9447c9c8f33f791aafa8785
GET /wp-content/uploads/Logo_Gesundezelle_500x199.png HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Mar 2019 20:30:49 GMT
etag: "2fde-583ffae63c1cb"
accept-ranges: bytes
content-length: 12254
content-type: image/png
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
85.13.133.60200 OK 1.7 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (5477)
Hash b1ead9e078b8c6a5044a583ef6fbbd5e
577658f92d2657f1131a97b6f128dfdb50d21d1a
b337360f9345d0763a9394d9a2b032459e0fe6199bee2a4b76f2b8ca24d8b867
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Oct 2020 22:55:12 GMT
etag: "15fd-5b20e01c323d0-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1733
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/masonry.min.js?ver=4.2.2
85.13.133.60200 OK 7.1 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (23966)
Hash b15709b26cbed268be463aeb7221d12d
8ece754f196cdbace087ee39d77784626f1bac9a
381c481a826838b8eadc28c8290f1928bea7edb660da92dfc08dd6bdf2d37122
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Oct 2020 22:55:12 GMT
etag: "5e4a-5b20e01c2b670-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 7130
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.6
85.13.133.60200 OK 2.4 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (10019)
Hash e28ebe71c5490d12576cd52e1dfc7ba4
2b0dd2a3c9f634ff2ee74675b7e9dbf087013e9e
b32a1960d6e7ccd7a0fe9099a012faf178bd0665852f4ad3ac2b308265b822ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "4824-5e8bfc8b6eabf-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2445
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
85.13.133.60200 OK 479 B URL HTTP/2 gesunde-zelle.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (1191), with no line terminators
Hash cc6e4bb0d08a7af642fb5d7d360b2417
81f2d45689b987e71e986648e1a0547cd62dee88
04e59d9a464d53fecbccadfb29b17f093d9495c32fc6fb2c4f0ec4c4d9300038
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 18:12:23 GMT
etag: "4a7-5e20d475c6a0f-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 479
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/js/scripts.min.js?ver=2.10.0
85.13.133.60200 OK 14 kB URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/js/scripts.min.js?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (56152)
Hash 5712065dd22ce2b630aab737dc2464d5
7519fce94a4dc8c0cb2e008f50c54f2ced1abb22
8c9b33e5cc4c2104dd7aa9ba557f5218e26a85d04fb2b1b2852c7d8a99fc79eb
GET /wp-content/themes/phlox/js/scripts.min.js?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "db80-5e77417ee60de-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 13593
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
Hash 04e36790964aa610a7c311ce9448ba01
ab0eada8d731e933b759bb1e2282ebab04122d72
bb9ee05c143bb16398dde383e85adf9c338603b57a906e822372c624fd9f958d
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 09:13:11 GMT
date: Fri, 16 Sep 2022 09:13:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
85.13.133.60200 OK 36 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (65266)
Hash 7204ebed6f104585c281e528b070478f
ebd05ae28110ade913d05be324f26f770998a1ba
bfd7c71bfc74664bb5613fa9afb1443ed67c0c1ca57402dc8ecb121ae1c50cb4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Feb 2021 14:55:42 GMT
etag: "267aa-5bb8969b74689-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 35851
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/auxin-elements/admin/assets/js/elementor/widgets.js?ver=2.10.3
85.13.133.60200 OK 698 B URL HTTP/2 gesunde-zelle.com/wp-content/plugins/auxin-elements/admin/assets/js/elementor/widgets.js?ver=2.10.3
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash f54005cf3d452dc4b3264d55635c2e1f
42327df77cad1900de5cd566f4a2be91e2c56c0b
26a3679b2f0e5b0eec473f12065f8d34077fe6593bb6c56ed9c59d05b4c62a26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/auxin-elements/admin/assets/js/elementor/widgets.js?ver=2.10.3 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:03 GMT
etag: "f92-5e77417bacd82-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 698
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/phlox/custom.js?ver=2.6
85.13.133.60200 OK 117 B URL HTTP/2 gesunde-zelle.com/wp-content/uploads/phlox/custom.js?ver=2.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash 605615a386ab02894822e37440c6b24f
f31be70deba82d5c741fdd17bf12151559d538f5
4bba00e183bc4a031185cdcc8afbcdb63792fe72699e6dc9f7ac9ba2542a7a2f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/phlox/custom.js?ver=2.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 11 Sep 2022 10:55:08 GMT
etag: "117-5e8649cd0fdd6-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 117
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/auxin-elements/public/assets/js/scripts.js?ver=2.10.3
85.13.133.60200 OK 2.2 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/auxin-elements/public/assets/js/scripts.js?ver=2.10.3
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash 2f08837a4fc04d478003757addb6a4f3
8ad9f0ec546b164dee01148a531a48117b203332
225ea5c32e595d1e911192b3a9b57ed1359f9bdf043cac178d865b234009239d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/auxin-elements/public/assets/js/scripts.js?ver=2.10.3 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:03 GMT
etag: "30c6-5e77417ba8f02-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2156
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/js/simplebar.min.js
85.13.133.60200 OK 18 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/js/simplebar.min.js
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (58542), with CRLF line terminators
Hash 735b831771c5ba49636dca5bb696825c
350e7a9ef9e589aacf19588d2192ce6263afafc3
3267def0aa6e317c8d2c2cea46f57426ef4d50beb560ace2068f774073aa44c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/shapepress-dsgvo/public/js/simplebar.min.js HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "e585-5e6e6f61b9c73-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 17947
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/auxin-elements/public/assets/js/plugins.min.js?ver=2.10.3
85.13.133.60200 OK 9.0 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/auxin-elements/public/assets/js/plugins.min.js?ver=2.10.3
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (31771), with no line terminators
Hash c5ab5d143672bc68e7ac50fb894a8f6b
fc9b56d4213f298ae6942a5f58ff0d786a142167
2d07db962472eee29c0ca90a816226472dbd22bb70dc4dc97f183ae7af4fc2df
GET /wp-content/plugins/auxin-elements/public/assets/js/plugins.min.js?ver=2.10.3 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:03 GMT
etag: "7c1b-5e77417ba9ea2-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 8958
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.6
85.13.133.60200 OK 1.1 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (2620), with no line terminators
Hash a322f651d65b1fe837999f3242c6cc93
a59fa7334f6a942c915f8987a309b20ea9401ba9
dfbbc5b7dc3ace426f2a2c265c16708a2a3ff426f78d2f3491342c152da92861
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "a3c-5e8bfc8b6eabf-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1052
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png
85.13.133.60200 OK 17 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type PNG image data, 401 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 033cb29a80157a2fd408120c24c6a2a8
7d1dba96f335fc472108fed9213182fdfa180661
128a4bc5213d429b34515acb7802fb8e4e077644b5201902a685d100ee1dc802
GET /wp-content/plugins/shapepress-dsgvo/public/images/legalwebio-icon.png HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:35:29 GMT
etag: "427d-5e6e6f61b7d32"
accept-ranges: bytes
content-length: 17021
content-type: image/png
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.6
85.13.133.60200 OK 2.0 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (4918)
Hash 7a108ec5e538015f2cfc61e428b422ce
c649ddc4bf3aa8808180060392d5094b3f449db6
a84258390e70bc8dcb2fcd2afc66a303c7dd12716813127d1d75c54eb48b5fee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "135d-5e8bfc8b78700-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2046
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
85.13.133.60200 OK 2.9 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (12198), with no line terminators
Hash 944267e8c3c28fae2ad68dc9b6904f35
f4a5b08c185028bb018925510ddb2f987b6d612a
9b965c6204d91d7ca4ec7ffccb99510fda6aaed1bb98fdb0c844186bd1dc499d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "2fa6-5e8bfc8b709ff-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 2869
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
85.13.133.60200 OK 3.3 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (10544)
Hash e4d72ab6d1e334f5a29f3052ef000615
43eaff3d97c24cc4004273abce5c2fc1a75e83a4
09791bf99f9a4742433e3b3d00135999dd5612d46ead04c42f9b2ec12dfe4282
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "29ba-5e8bfc8b6db1f-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 3274
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/pixel-caffeine/build/frontend.js?ver=2.3.3
85.13.133.60200 OK 5.0 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/pixel-caffeine/build/frontend.js?ver=2.3.3
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (16050), with no line terminators
Hash 8a50d49b11672e6d4ed667172f52b433
a9e97264628738e0c7091a57dcd367c792fcdcd1
9bd83844cfa4dcacb49236fcb9921b98105b853b663c09ccd94660b4034aa988
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pixel-caffeine/build/frontend.js?ver=2.3.3 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Mar 2021 20:17:29 GMT
etag: "3eb2-5be4dfcf1cebe-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 5038
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
85.13.133.60200 OK 6.6 kB URL HTTP/2 gesunde-zelle.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7af971b915fcd158098937a176c574b7
66a2017e6b32b1affc1399a8fc0e9091c02f1736
08e49238ac48a6c9e29e53fb2180197bbb0cf4d5f4c16d2b2672a04b4aa122ff
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 18:12:23 GMT
etag: "50eb-5e20d475db22e-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 6646
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.6
85.13.133.60200 OK 10 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 741107550b7e9c01450e6283391473ed
60328f7a6102e1d1a830cd82ad6b5e5252201b5f
5a0cbde56f3e6d5375669ad70a7c89ad2472523bebf7cff76e55b8bf632dd769
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "80a1-5e8bfc8b77760-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 10447
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.6
85.13.133.60200 OK 12 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (43101)
Hash b2a51aba0af56cb0ab00c29c597cefe6
2e62684c09d18fbede553d0fa1792a371cd568da
94e6387ebc064ba217d7ea92199c27f7bd63b3bd8209b144f041be5d5ccaa658
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "a884-5e8bfc8b77760-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 12543
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.6
85.13.133.60200 OK 12 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (40474)
Hash 3d5d16b146c37e3973493e600e97ad3f
c12beabee90478f1a27468c94415ea2a2fa32b75
24fd6dbb6d295c8e2dca000d6e1894bc1a7e8d4845f82d6d42a63119830fffc5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "9e41-5e8bfc8b77760-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 11723
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
85.13.133.60200 OK 34 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type ASCII text, with very long lines (65280)
Hash b2ce6e274d6b80519cc434f400c7886d
2236ee64086892054ed8090b6f0b6812e5937c22
986925502e4db6b7b47f5ab82447f4e6f374058fba6730b77b10384261745376
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "21f91-5e8bfc8b6cb7f-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 33848
content-type: application/javascript
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/Frau-am-Strand_960x540.jpg
85.13.133.60200 OK 50 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Frau-am-Strand_960x540.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash 60953b2b31256b6f3f324ee7412b9d68
86cdc85473f9f2444deab1cab805185047b2327e
f1d9823ef13e15f137ea4fc8dfcb7b8787d77bdda829dd4c5cf48a10be78ba76
GET /wp-content/uploads/Frau-am-Strand_960x540.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/wp-content/uploads/elementor/css/post-245.css?ver=1646950383
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 23 Feb 2019 21:31:59 GMT
etag: "c2fe-582966ffdc511"
accept-ranges: bytes
content-length: 49918
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/gluecklich-am-Strand_960x540.jpg
85.13.133.60200 OK 49 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/gluecklich-am-Strand_960x540.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash 3ed837420811dfa26e981b7b196173bc
6aba39941ffd6181e02375f4d9c5a07e0eacf4a8
0d6f1532cef87018ceb3003f2e4c46ea8142176969d190176a6f6275a21a7768
GET /wp-content/uploads/gluecklich-am-Strand_960x540.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/wp-content/uploads/elementor/css/post-245.css?ver=1646950383
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 23 Feb 2019 21:32:00 GMT
etag: "bea0-58296700d74a9"
accept-ranges: bytes
content-length: 48800
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
85.13.133.60200 OK 77 kB URL HTTP/2 gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gesunde-zelle.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 23:41:27 GMT
etag: "12d68-5e8bfc8b6fa5f"
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gesunde-zelle.com/
85.13.133.60200 OK 205 kB IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size 205 kB (205172 bytes)
Hash 776191762bbf4c851a74a4914b71f229
313eb28478ea4c7803f3e016bf4607495e9e1db2
e77673642b66d3db45718aa40c3e13e1a4221ade1b5d81c8eda9c7997216bae1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://gesunde-zelle.com/wp-json/>; rel="https://api.w.org/", <https://gesunde-zelle.com/wp-json/wp/v2/pages/245>; rel="alternate"; type="application/json", <https://gesunde-zelle.com/>; rel=shortlink
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: text/html; charset=UTF-8
date: Fri, 16 Sep 2022 09:13:10 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gesunde-zelle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:27:53 GMT
expires: Thu, 14 Sep 2023 19:27:53 GMT
cache-control: public, max-age=31536000
age: 135918
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
142.250.74.163200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gesunde-zelle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:27:54 GMT
expires: Thu, 14 Sep 2023 19:27:54 GMT
cache-control: public, max-age=31536000
age: 135917
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizdRExUiTo99u79D0e8fOydLxUd.woff2
142.250.74.163200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizdRExUiTo99u79D0e8fOydLxUd.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 32964, version 1.0\012- data
Hash 837e4f7f18f25636413ecd6a72074b7c
7f988c4b121f5afae056d467c2c9e5d16d4fb844
001d8a10f7fa65efb142212df4f00867320cda3b9ee9075d7dbe50ef090e14e0
GET /s/ptsans/v17/jizdRExUiTo99u79D0e8fOydLxUd.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gesunde-zelle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:40:22 GMT
expires: Thu, 14 Sep 2023 19:40:22 GMT
cache-control: public, max-age=31536000
age: 135169
last-modified: Wed, 27 Apr 2022 16:06:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
142.250.74.163200 OK 42 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 42500, version 1.0\012- data
Hash 8c5246074400a5141ea18bf48dff17ee
b0650d9d042dfdc6e5fbc3b9f79f87822f9ee689
595c14bd7589b069e4570ba658cfab8850611639e8a077ca84ef263bfa4671f9
GET /s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gesunde-zelle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 04:27:53 GMT
expires: Sun, 10 Sep 2023 04:27:53 GMT
cache-control: public, max-age=31536000
age: 535518
last-modified: Wed, 27 Apr 2022 16:01:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gesunde-zelle.com/wp-content/uploads/Frau-Bauch_500x300.jpg
85.13.133.60200 OK 20 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Frau-Bauch_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x300, components 3\012- data
Hash 231b3194990f22b72e89bd66e313fbc7
47ff78638f173353d1dd4353efccb99ff8437151
57223860d4f8f2080f517e5253562715e764f0c09fe33fe46fddd4aadbeb9cf3
GET /wp-content/uploads/Frau-Bauch_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Mar 2019 15:23:31 GMT
etag: "4c11-584ecc983ab04"
accept-ranges: bytes
content-length: 19473
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/gruener-Smoothie_500x300.jpg
85.13.133.60200 OK 45 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/gruener-Smoothie_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x300, components 3\012- data
Hash 80dea5d53cfa1296dd958147ce81303a
d90bd984738bc1fc06b1e21ec57e3e847d1ada25
b8ec3ebe76b300a3bbc993bbb38b8edf4e18b6426b7280d0dccd7bc31099dddd
GET /wp-content/uploads/gruener-Smoothie_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Mar 2019 15:06:11 GMT
etag: "b047-584ec8b7f71cb"
accept-ranges: bytes
content-length: 45127
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/Frau-Yoga_500x300.jpg
85.13.133.60200 OK 43 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Frau-Yoga_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x300, components 3\012- data
Hash 5b9e8ef6a9241eb9b8d0a5cd4c66b461
bfd127865daf6c3696f5584d4e3c1c7c545bdea4
90a79622692d6d07a827a1a842fc9e4d8e7cc3090fba16919e174ae4058b0b81
GET /wp-content/uploads/Frau-Yoga_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Mar 2019 22:22:25 GMT
etag: "a6d3-584b64a174a23"
accept-ranges: bytes
content-length: 42707
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/Jogger_500x300.jpg
85.13.133.60200 OK 51 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Jogger_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x300, components 3\012- data
Hash 9fe40128761da1faa3aed62397707593
bb9f08aa268b10d56bf909731e3654ba52231b80
4a79f21774fd4ea4ecc0e4ab3a51e32623f81b1e94e75c91b0058c32160d9e88
GET /wp-content/uploads/Jogger_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Mar 2019 21:42:44 GMT
etag: "c78d-584f215ad0845"
accept-ranges: bytes
content-length: 51085
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20656
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 09:13:11 GMT
Connection: keep-alive
gesunde-zelle.com/wp-content/uploads/Gurke_500x300.jpg
85.13.133.60200 OK 53 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Gurke_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x300, components 3\012- data
Hash 6a8b38a4f3a1180cdc45f7a4bf1edbd5
1f0ecf67b0cc47dce3e3a4f434236f7fc0a48745
6d361ba2fae0b411b01331d6b032fe4293e786242c3e237a8c75d3b37c0bf36d
GET /wp-content/uploads/Gurke_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 18:56:38 GMT
etag: "d053-5849f4c52e965"
accept-ranges: bytes
content-length: 53331
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/uploads/Obst_500x300.jpg
85.13.133.60200 OK 75 kB URL HTTP/2 gesunde-zelle.com/wp-content/uploads/Obst_500x300.jpg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x300, components 3\012- data
Hash 556e22cb3e884d4c0d1e4636c0dac36e
afdc4c3d52a5f81821e02a7457c765de53095ea8
6a594885db1b90d1ac92ce4184cbeb609916605c0c226d21509cf806a0692938
GET /wp-content/uploads/Obst_500x300.jpg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Mar 2019 15:45:07 GMT
etag: "1241b-584ed16c1c020"
accept-ranges: bytes
content-length: 74779
content-type: image/jpeg
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20656
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 09:13:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20656
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 09:13:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20656
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 09:13:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20656
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 09:13:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 39672
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 974f0e1d052879e47d9230adbd2935e4
d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2
eb7d70fc9b159adbbaa96c0ee5d6032bb0839883b950b0d586a300dd1d8348bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12744
x-amzn-requestid: f5921831-e306-442b-a43f-e4cfc67980aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj4GlEoAMFxbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-7ae58b110d2dcfb507939612;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nrQcy13_zOPbKnLI2-OCakZzR4MsMwO3t45Q9T0hnPL6HGnRo3uPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:03 GMT
age: 41348
etag: "d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sZDehRAgImuoJtVDIS6Mgz2871fOYrT0H7cx0QucG6mDuE1NmrW5Hw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:59 GMT
age: 40932
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab434eb762838f03bf60457b3039c738
bcacfdb674bdd90c157f7e97d232c49a4d206004
9e1e6b832980c9777e3e90a7ff3d84f96d35bbaab808a74343d91cea01aa1d64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8076
x-amzn-requestid: e5521c18-64d3-4f61-8879-3dac61128920
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfzqG_hIAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6321467d-009f1413346a7b965d1c65e4;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iuHNhGHNAWOnDQMh9cgYAVHgnCuyqLcXiYBUBzgK5PFyC1_AaE-CbA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 19:18:41 GMT
age: 50070
etag: "bcacfdb674bdd90c157f7e97d232c49a4d206004"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 41341
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300d3b6181f9bcb7318b0706646787fa
9cf371e2ecdd46de7ea1290bb158b144a9de57bb
7059364a6076210e603301e0e3ad0009a5c1cd0b8821e321f704532e17b95e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6560
x-amzn-requestid: 0532b908-dbda-4d51-8574-dba85e33bfcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUrG7GTnoAMF9-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e8bc5-35c25a2a76c8e0db6d7b06df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 01:30:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Xvgf5sF1GJNaJ2uERewkTcfwr3cUHVwU8-CXI7fK2K4t6JCsyPnzJg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:27:11 GMT
age: 38760
etag: "9cf371e2ecdd46de7ea1290bb158b144a9de57bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/css/images/svg/symbols.svg
85.13.133.60200 OK 36 kB URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/css/images/svg/symbols.svg
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (1030)
Hash 355b57fa7f8cf5fb6cfa8d7f648081b2
b08aa2cd55c7b83fb6268a23ffe62a3bf70bac96
6e374834b5250534c7a0d1ee195ff202bfcac639f55bc3c4a7ceb611b5591c2e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/phlox/css/images/svg/symbols.svg HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/wp-content/themes/phlox/css/main.css?ver=2.10.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "8b8e-5e77417ee419e"
accept-ranges: bytes
content-length: 35726
vary: User-Agent
content-type: image/svg+xml
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6007
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:12 GMT
Last-Modified: Fri, 16 Sep 2022 07:33:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash ecb99528d18dbe7952eac9618eaf2d8e
eb59bf3afc849403fa3dde09b75b5fc51f29e7b5
bcecfe43bf3e0f22ff425fe630e189d28fc3ecdc9764dd1686599e5ce59f40cc
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iq59KZTA8iGCiJP61+BoYRGnTFHOSnK46I7Z76Q3xDSaVsFoIkyTdT35p4cN+zSmm/uwoCfq+7jv8omRdA6sqg==
priority: u=3,i
content-length: 26872
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 09:13:12 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6007
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 09:13:12 GMT
Last-Modified: Fri, 16 Sep 2022 07:33:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=1323173934486395&ev=PageView&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576389&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=0&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=1323173934486395&ev=PageView&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576389&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=0&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=1323173934486395&ev=PageView&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576389&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=0&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 09:13:12 GMT
expires: Fri, 16 Sep 2022 09:13:12 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1323173934486395&ev=AdvancedEvents&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576396&cd[login_status]=not_logged_in&cd[post_type]=page&cd[object_id]=245&cd[object_type]=home&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&cd[_filteredParams]=%7B%22unwantedParams%22%3A%5B%5D%2C%22sensitiveParams%22%3A%5B%2250ce8702d861f54c87094a5317406d1327354e33a1c2a69408258a86259ec48f%22%5D%7D&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=1&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=1323173934486395&ev=AdvancedEvents&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576396&cd[login_status]=not_logged_in&cd[post_type]=page&cd[object_id]=245&cd[object_type]=home&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&cd[_filteredParams]=%7B%22unwantedParams%22%3A%5B%5D%2C%22sensitiveParams%22%3A%5B%2250ce8702d861f54c87094a5317406d1327354e33a1c2a69408258a86259ec48f%22%5D%7D&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=1&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=1323173934486395&ev=AdvancedEvents&dl=https%3A%2F%2Fgesunde-zelle.com%2F&rl=&if=false&ts=1663319576396&cd[login_status]=not_logged_in&cd[post_type]=page&cd[object_id]=245&cd[object_type]=home&cd[userAgent]=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&cd[language]=en-US&cd[referrer]=&cd[_filteredParams]=%7B%22unwantedParams%22%3A%5B%5D%2C%22sensitiveParams%22%3A%5B%2250ce8702d861f54c87094a5317406d1327354e33a1c2a69408258a86259ec48f%22%5D%7D&sw=1280&sh=1024&v=2.9.81&r=stable&a=dvpixelcaffeinewordpress&ec=1&o=30&fbp=fb.1.1663319576388.1080499769&it=1663319576146&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 09:13:12 GMT
expires: Fri, 16 Sep 2022 09:13:12 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gesunde-zelle.com/favicon.ico
85.13.133.60302 Found 0 B URL HTTP/2 gesunde-zelle.com/favicon.ico
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
link: <https://gesunde-zelle.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://gesunde-zelle.com/wp-includes/images/w-logo-blue-white-bg.png
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 16 Sep 2022 09:13:12 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-includes/images/w-logo-blue-white-bg.png
85.13.133.60200 OK 4.1 kB URL HTTP/2 gesunde-zelle.com/wp-includes/images/w-logo-blue-white-bg.png
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gesunde-zelle.com/
Connection: keep-alive
Cookie: _fbp=fb.1.1663319576388.1080499769
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Jun 2020 23:38:13 GMT
etag: "1017-5a7c3565efd71"
accept-ranges: bytes
content-length: 4119
content-type: image/png
date: Fri, 16 Sep 2022 09:13:12 GMT
server: Apache
X-Firefox-Spdy: h2
gesunde-zelle.com/wp-content/themes/phlox/css/main.css?ver=2.10.0
85.13.133.60200 OK 0 B URL HTTP/2 gesunde-zelle.com/wp-content/themes/phlox/css/main.css?ver=2.10.0
IP 85.13.133.60:0
ASN #34788 Neue Medien Muennich GmbH
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/phlox/css/main.css?ver=2.10.0 HTTP/1.1
Host: gesunde-zelle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 11:58:07 GMT
etag: "daaa9-5e77417ee31fe-br"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: text/css
date: Fri, 16 Sep 2022 09:13:11 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans%3A400%2C900italic%2C900%2C800italic%2C800%2C700italic%2C700%2C600italic%2C600%2C500italic%2C500%2C400italic%2C300italic%2C300%2C200italic%2C200%2C100italic%2C100&ver=6.4
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans%3A400%2C900italic%2C900%2C800italic%2C800%2C700italic%2C700%2C600italic%2C600%2C500italic%2C500%2C400italic%2C300italic%2C300%2C200italic%2C200%2C100italic%2C100&ver=6.4
IP 142.250.74.10:0
GET /css?family=PT+Sans%3A400%2C900italic%2C900%2C800italic%2C800%2C700italic%2C700%2C600italic%2C600%2C500italic%2C500%2C400italic%2C300italic%2C300%2C200italic%2C200%2C100italic%2C100&ver=6.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gesunde-zelle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 09:13:11 GMT
date: Fri, 16 Sep 2022 09:13:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2