der-kerzenmacher-2021-neue-preise.vitoweb.de/
85.214.212.150301 Moved Permanently 20 B URL HTTP/1.1 der-kerzenmacher-2021-neue-preise.vitoweb.de/
IP 85.214.212.150:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 28 Aug 2022 23:32:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: XTCsid=t1gs48r99dv826df8nukogum8g; path=/; domain=.der-kerzenmacher-2021-neue-preise.vitoweb.de; HttpOnly
Location: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
X-Content-Type-Options: nosniff
X-Powered-By: PHP/7.2.34, PleskLin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 21b1296f31569e4fb94048c52df34904
3e3194f640d71b9da28e809660443e332bdba310
7ebe5d06efe28c8507b4cdfbf68c6e5bbd9919ba776990fb8a22d90cca0c1c1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EBE5D06EFE28C8507B4CDFBF68C6E5BBD9919BA776990FB8A22D90CCA0C1C1B"
Last-Modified: Sat, 27 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9723
Expires: Mon, 29 Aug 2022 02:14:56 GMT
Date: Sun, 28 Aug 2022 23:32:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 28 Aug 2022 23:14:11 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DIVhIcgDHRmUdx2h1ePkIy_iOeziuGklZtU4fNCYD7JpDV37194Ojw==
Age: 1122
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 28 Aug 2022 22:35:59 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A_BmtrsSq_sj7jzA8qJ8wamkfCRlKiez2hhfUWj_xZy80nE1xPiYww==
age: 3415
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f9aae4e589b95234dbdfd1a9fe0add7
8dd7270d9902746574431e68c17d5921dbc91534
edfd91c75e36430eb394b45f3f07f2b70b4f61f8f4a92499ba76577ddf4fd879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDFD91C75E36430EB394B45F3F07F2B70B4F61F8F4A92499BA76577DDF4FD879"
Last-Modified: Fri, 26 Aug 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10823
Expires: Mon, 29 Aug 2022 02:33:16 GMT
Date: Sun, 28 Aug 2022 23:32:53 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 28 Aug 2022 23:17:12 GMT
Expires: Sun, 28 Aug 2022 23:43:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yAc1g37_lG5zAMHaR3sTssB4ejKwzAQQn1KFYeNxTNWRBfa613FcJA==
Age: 941
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 396ffb5d17a8a353f8f748959fcf7966
8301f51528695b9c8a48de0e6e889b603f34308c
a5c0dd3453bdba148aea970cda083b70b3ba680286a6c65878cc369d20f1d216
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 23:32:53 GMT
Last-Modified: Sun, 28 Aug 2022 21:57:57 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
104.17.24.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65451)
Hash 77bd61b98f7b67af56639229724f8dd4
f04f07dd8ff53e58c32b738f81b71a014bca441d
8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 361764
expires: Fri, 18 Aug 2023 23:32:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7qfJnSuRBxah0ogJ0k6DfVJuMbq5gwG0ssrZIRHZkeMWtCyzTrkZ9n7JCSq01EtJh4I1BBHmXRX7EmvhGWI5NkeY7KSnTxiSt0l2L%2Bt9DXMpx7Oj2NyEH%2FUsLTOIviTG1Z7Ryeju"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7420d94e58d5b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9ZNIsCiMHAOI7HBWLTiC2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9/7Hsw4MRlrguCJyJA5Mw+4SFEc=
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/logos/der-kerzenmacher-logo_logo.png
85.214.212.150200 OK 24 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/logos/der-kerzenmacher-logo_logo.png
IP 85.214.212.150:0
File type PNG image data, 470 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 93482a5359767c4d6661767befb3ea66
96915d33aa601d6c9342841f35fc8a22bc5a8616
fe55bef19931c225279c18b3e3b973e55c05cd67f78655cc1e42546da49ba6d6
GET /images/logos/der-kerzenmacher-logo_logo.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 24113
last-modified: Wed, 02 May 2018 08:50:54 GMT
etag: "5ae97bee-5e31"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Kirche.png
85.214.212.150200 OK 3.7 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Kirche.png
IP 85.214.212.150:0
File type PNG image data, 195 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 0df1d86b15dd25ed764e5b212affea1c
4ad291532c29575602533c2feb807a4aea421d63
e5faa3323683306693d82f28210be940ddfdce5909c1928c7b7c20e58a385d5e
GET /images/content/startseite/Icon-Kirche.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 3690
last-modified: Mon, 30 Apr 2018 12:46:36 GMT
etag: "5ae7102c-e6a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Kuchen.png
85.214.212.150200 OK 3.1 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Kuchen.png
IP 85.214.212.150:0
File type PNG image data, 195 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 296158975352438962f6474f944d22b5
8e34c813773f44215d0987ef26a050d958343c74
0b7b5b36eab4443171b7144635327bc1e8c7540002153c072a685144e250dae5
GET /images/content/startseite/Icon-Kuchen.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 3138
last-modified: Mon, 30 Apr 2018 12:46:38 GMT
etag: "5ae7102e-c42"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Haus.png
85.214.212.150200 OK 3.4 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-Haus.png
IP 85.214.212.150:0
File type PNG image data, 195 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 208eda2802e6577909e2ebb741638ef2
af36aa2ee9dd074ace9669c1542495e35a47df6e
aa46f5a2057cfac09108ebf8254bcc955bb14fee854d3316f461832cbcbfe1b5
GET /images/content/startseite/Icon-Haus.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 3351
last-modified: Mon, 30 Apr 2018 12:46:36 GMT
etag: "5ae7102c-d17"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-zur-Kerzengalerie.png
85.214.212.150200 OK 12 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Icon-zur-Kerzengalerie.png
IP 85.214.212.150:0
File type PNG image data, 187 x 131, 8-bit/color RGBA, non-interlaced\012- data
Hash 8551b6275c825846fae2cb9b5e24b1cb
95d58c06e78e9a5120e4685139ea4fda3780b6d0
9ebd356fa42e4bb920eef08e8d9ab5bd7eade74f99dd2d5550424701264faa51
GET /images/content/startseite/Icon-zur-Kerzengalerie.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 11811
last-modified: Wed, 23 Jun 2021 13:03:48 GMT
etag: "60d33134-2e23"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Emblem-Kirchenkerzen-qualitaet.png
85.214.212.150200 OK 8.4 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Emblem-Kirchenkerzen-qualitaet.png
IP 85.214.212.150:0
File type PNG image data, 360 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 363e26bed6cd25e66efb7b3da63a3ace
9ecbe8dcbdd1647ae6f7a94e70affb20f66dc82d
621c9c9121c033dff78794226ca506a8ce4c82096f25ed0446611bfea1ac9b27
GET /images/content/startseite/Emblem-Kirchenkerzen-qualitaet.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 8395
last-modified: Mon, 30 Apr 2018 15:41:06 GMT
etag: "5ae73912-20cb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Emblem-Mitglied-Kerzeninnung.png
85.214.212.150200 OK 9.0 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Emblem-Mitglied-Kerzeninnung.png
IP 85.214.212.150:0
File type PNG image data, 350 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash fb50581c0d989ad54eebf15bf6cf21fd
7b004035bf10cf3101553abb67ee73c31b11eca5
5d4e0aff00656d97cc44503ea39c2defa00bf204f3a20354d9b0b6f7a0fafec6
GET /images/content/startseite/Emblem-Mitglied-Kerzeninnung.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 8962
last-modified: Mon, 30 Apr 2018 15:34:18 GMT
etag: "5ae7377a-2302"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Unterschrift-Mentzer.gif
85.214.212.150200 OK 10 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/content/startseite/Unterschrift-Mentzer.gif
IP 85.214.212.150:0
File type GIF image data, version 89a, 630 x 269\012- data
Hash 2b8d6b9417a5bca68e7866bc4f31bf1a
839441c2250e6057a0e15ec1cf93b0116e3e6d15
83d785c7d1332e6bab1f68ffcf4ab217da529585ce11d46255061d10dbbd8b76
GET /images/content/startseite/Unterschrift-Mentzer.gif HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/gif
content-length: 10060
last-modified: Thu, 29 Nov 2018 11:52:00 GMT
etag: "5bffd2e0-274c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/Cover-Der-Kerzenmacher-Jahreskatalog-2021.jpg
85.214.212.150200 OK 78 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/Cover-Der-Kerzenmacher-Jahreskatalog-2021.jpg
IP 85.214.212.150:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 567x595, components 3\012- data
Hash 1a48f158a29ede574e9a612d2704d4ea
1e08db226006b2e40fe5192bd4e61b444b1f57d4
a2bf5694bee4ffb9a5bb83aa05bd0862fbfec56a9051ad507f0d2459a7297550
GET /templates/Honeygrid/assets/images/kerzenmacher/Cover-Der-Kerzenmacher-Jahreskatalog-2021.jpg HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/jpeg
content-length: 77734
last-modified: Thu, 24 Sep 2020 09:28:20 GMT
etag: "5f6c66b4-12fa6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/header-footer-background-gradient.png
85.214.212.150200 OK 1.8 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/header-footer-background-gradient.png
IP 85.214.212.150:0
File type PNG image data, 6667 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash a50d1226dd9962ced32a500976a1611a
f81085e0f62d7899447e963f9d5e85633dbe1117
dbf6a7830b3634d6ed287ab8946d01a68f56a6f7f9e36f5b522e1e7eaa838575
GET /templates/Honeygrid/assets/images/kerzenmacher/header-footer-background-gradient.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 1780
last-modified: Thu, 26 Apr 2018 08:32:16 GMT
etag: "5ae18e90-6f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/topbar-icon-merkzettel.png
85.214.212.150200 OK 1.5 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/topbar-icon-merkzettel.png
IP 85.214.212.150:0
File type PNG image data, 40 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash b78146eaed6534869363a59e182ddc1e
bf415e88be7f1ad73c496ac3e87da3ac18ce3451
37b6d93f35563bb0244674afea4ea1f1232ddd0242c64f8c3a964bd9751dca45
GET /templates/Honeygrid/assets/images/kerzenmacher/topbar-icon-merkzettel.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 1481
last-modified: Wed, 02 May 2018 14:26:26 GMT
etag: "5ae9ca92-5c9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/einkaufswagen.png
85.214.212.150200 OK 488 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/einkaufswagen.png
IP 85.214.212.150:0
File type PNG image data, 42 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 91a870e002ae79529ac058970e7797bc
8d504e9dc42234bce3a997cdd6185a37898eb9e7
88c08de66d03fe745deb7e75af62290b6901380cd719aa4bde5cb291b7849063
GET /templates/Honeygrid/assets/images/kerzenmacher/einkaufswagen.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 488
x-accel-version: 0.01
last-modified: Mon, 30 Apr 2018 15:10:04 GMT
accept-ranges: bytes
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/lupe.png
85.214.212.150200 OK 502 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/lupe.png
IP 85.214.212.150:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 32b5372a80f290153842bbe1b59a03f6
2e19f644167dc73afb5cd28836441a98f0612937
2e6a0668a2405c1779fd58fa3df21b2fdc85a09050f349349e271ef4884489c2
GET /templates/Honeygrid/assets/images/kerzenmacher/lupe.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 502
x-accel-version: 0.01
last-modified: Mon, 30 Apr 2018 15:08:14 GMT
accept-ranges: bytes
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/pfeil-navigation-rechts.png
85.214.212.150200 OK 307 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/pfeil-navigation-rechts.png
IP 85.214.212.150:0
File type PNG image data, 17 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash b7c4e900958c6db8241f49d9816d2435
446a7b2deb163a46a8d0bc1812dea5a2294b620e
1583bc713486bc42668948f6d4b5749540e3680c2951c07d8edf5a467b8f52b7
GET /templates/Honeygrid/assets/images/kerzenmacher/pfeil-navigation-rechts.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 307
x-accel-version: 0.01
last-modified: Mon, 30 Apr 2018 15:03:38 GMT
accept-ranges: bytes
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/styles/fontello/font/gm.woff?51482360
85.214.212.150200 OK 3.7 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/styles/fontello/font/gm.woff?51482360
IP 85.214.212.150:0
File type Web Open Font Format, TrueType, length 3708, version 1.0\012- data
Hash 879d16d10b45a4a5684cf7629df07e5e
3d02b1cb623ed236220d906e6a288185b0eb90dd
321b912826aeee7df4abcd02df436ca3be0d036be254335254942a9d4fa40302
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/styles/fontello/font/gm.woff?51482360 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff
content-length: 3708
last-modified: Thu, 19 Apr 2018 18:44:00 GMT
etag: "5ad8e370-e7c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-regular.woff2
85.214.212.150200 OK 45 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-regular.woff2
IP 85.214.212.150:0
File type Web Open Font Format (Version 2), TrueType, length 45052, version 1.0\012- data
Hash 198d320b73bc44e4f0dd33d6b09c9511
32770201897de26b9c207215e4ec18c8eab82189
143c5c0124d14b936536af0c656e10aebbc2bb832563f00137f7e9c717195df1
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/fonts/pt-sans-v9-latin-regular.woff2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff2
content-length: 45052
last-modified: Mon, 30 Apr 2018 10:17:28 GMT
etag: "5ae6ed38-affc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-700.woff2
85.214.212.150200 OK 47 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-700.woff2
IP 85.214.212.150:0
File type Web Open Font Format (Version 2), TrueType, length 46620, version 1.0\012- data
Hash f6d5807c5cbc7ff22671d30fbf09ae1a
f6573b244a01641be40c01ea0fe7a404b766ff86
080d87ea98497809417441c5267bcc92f38883b7023d125e7766b1f4ca8658df
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/fonts/pt-sans-v9-latin-700.woff2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff2
content-length: 46620
last-modified: Mon, 30 Apr 2018 10:17:28 GMT
etag: "5ae6ed38-b61c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/slider_images/Headergrafik-Desktop-1600x450px-2021.jpg
85.214.212.150200 OK 323 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/slider_images/Headergrafik-Desktop-1600x450px-2021.jpg
IP 85.214.212.150:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1600x450, components 3\012- data
Size 323 kB (323366 bytes)
Hash 03c70b2f009d3d46edad72d60a856fa5
68cc6df5e00e117e3b642822a06ac8818399c938
ff92349a472e263f429551ee5ae7e31bce0eea3e911059e2037b37966f79eec3
GET /images/slider_images/Headergrafik-Desktop-1600x450px-2021.jpg HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/jpeg
content-length: 323366
last-modified: Thu, 24 Sep 2020 09:15:04 GMT
etag: "5f6c6398-4ef26"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/trenner-schatten-oval.png
85.214.212.150200 OK 5.6 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/trenner-schatten-oval.png
IP 85.214.212.150:0
File type PNG image data, 3200 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 812fe0429f9db4953a45d2a7b81e569f
4b96432fcb9cf786327ecbfa3372e49d26683411
36649e81c757e109765b2ca0ad9d8c768a49fa24630bd4aa659a8889d8131c68
GET /templates/Honeygrid/assets/images/kerzenmacher/trenner-schatten-oval.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 5564
last-modified: Mon, 30 Apr 2018 13:10:58 GMT
etag: "5ae715e2-15bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/button-to-the-shop.png
85.214.212.150200 OK 6.3 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/images/kerzenmacher/button-to-the-shop.png
IP 85.214.212.150:0
File type PNG image data, 240 x 244, 8-bit/color RGBA, non-interlaced\012- data
Hash 20d468ebb729751947eccc71dd33b3e4
2e8832a439bf2ffc1186540d2d62522e0ce99cc9
ffae76b0d0accf5a6c3ef593d30616001d9b9fa5c8862769b691ef0f04d908a7
GET /templates/Honeygrid/assets/images/kerzenmacher/button-to-the-shop.png HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/png
content-length: 6270
last-modified: Mon, 07 May 2018 13:04:30 GMT
etag: "5af04ede-187e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-italic.woff2
85.214.212.150200 OK 42 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-italic.woff2
IP 85.214.212.150:0
File type Web Open Font Format (Version 2), TrueType, length 42136, version 1.0\012- data
Hash 57d98c19d7c99ec67ffdf8a265dd2144
54044a62f82565f02058d2deb67beafa4c576c8e
b0c71d14ae42fed217357c70691810c8b9d61fb997a78e9602d6772fb6887b11
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/fonts/pt-sans-v9-latin-italic.woff2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff2
content-length: 42136
last-modified: Mon, 30 Apr 2018 10:17:28 GMT
etag: "5ae6ed38-a498"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-700italic.woff2
85.214.212.150200 OK 32 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/fonts/pt-sans-v9-latin-700italic.woff2
IP 85.214.212.150:0
File type Web Open Font Format (Version 2), TrueType, length 32512, version 1.0\012- data
Hash 83aaeeeca467b3c673dd42800227b438
a3351eebea901d4190af7096a0c61b5255b9f76c
9ca370312feb280f7829d8e2cb879d286b36e4bca35f5dbc2926dd83d7c15b02
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/fonts/pt-sans-v9-latin-700italic.woff2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff2
content-length: 32512
last-modified: Mon, 30 Apr 2018 10:17:26 GMT
etag: "5ae6ed36-7f00"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/gm/javascript/GMCounter.js
85.214.212.150403 Forbidden 21 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/gm/javascript/GMCounter.js
IP 85.214.212.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b3030dc6c3291a22baf6fe759e367c1
b8f78e7dab7f6aecf858c14314591ef4ecb6c565
3e79a3d9470c3bcd386195e991a75d9da2e31553e8145ebebf3c1dba601c8f13
Analyzer Verdict Alert fortinet Phishing
GET /gm/javascript/GMCounter.js HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: text/html
last-modified: Tue, 11 Sep 2018 15:44:29 GMT
etag: W/"31b-5759a596ffbf2"
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/images/logos/favicon.ico
85.214.212.150200 OK 1.2 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/images/logos/favicon.ico
IP 85.214.212.150:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d5ec88b8d8d5741668067419ac192696
36126d285a0a32af94dd7a34c5b886e4093e695f
89a2252bed87dce4359cb6c49cb2c383a0423c3bf1c4169b72bc5abae0cca54d
GET /images/logos/favicon.ico HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 27 Apr 2018 11:12:34 GMT
etag: "5ae305a2-47e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/controllers/initialize.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 112 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/controllers/initialize.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with no line terminators
Hash 470d2d00fb6bd54ed6bea65cc37ba500
1205ffb5dff1b0fea89af9dac9f6005159fd8099
c22dcd6e156611568f4168f213ee5013ab3c0cf3be485da06cb282e1c14e63c7
GET /templates/Honeygrid/assets/javascript/engine/controllers/initialize.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 112
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/header.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 512 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/header.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (982), with no line terminators
Hash 98312159ce0080f68b01d7df2a1bac48
a05aa5fba0e55d14496bc6f785f403b01c9ae0e7
42e48ba538ae4b0344817a5f9bb0f0934bf86895a37dc1aca88a69c0d0a819ae
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/header.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 512
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/image_maps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 178 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/image_maps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with no line terminators
Hash 88c035b5cac4a434bf9215e3bc4f0b1d
b840ab77f11202a5888be8c32f87f1c95225f4d5
4f93d72a0e1e326ccc385848fdbdb7ce1546d0a9164b7ece48692ac0525ac559
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/image_maps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 178
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 364 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (583), with no line terminators
Hash e0befdc08a1388de633d77ac2bc84934
c1c02662378d1bca5c8e75742b7443433f035912
855c6d61041b58c01ecfac7248515e18b869ff4d91d2152f67de3a98a5b2bae3
GET /templates/Honeygrid/assets/javascript/engine/widgets/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 364
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
85.214.212.150200 OK 72 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
IP 85.214.212.150:0
File type ASCII text, with very long lines (65534)
Hash 6f23b289e977e163a985e502030bf2ec
7bfd16d31d1ac417e01aeb9abffea4c419fa34fe
a2d9cfd948f49b4c9fdd21bcff6664037a7b291d77f4361f552204118376e80e
GET /templates/Honeygrid/main.min.css?bust=1633012520 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: text/css
last-modified: Thu, 30 Sep 2021 14:35:20 GMT
etag: W/"6155cb28-b5b66"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/core_workarounds.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 328 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/core_workarounds.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (665), with no line terminators
Hash 2a8a4da201018c551c45971c2448443c
74e5712e3b16a97ff975a299617af382526b4f8a
9b7c4c9633af6e2a8b31a3904f5d941d30a81b773fe96f1b32f19aa6e28d84ee
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/core_workarounds.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 328
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/anchor.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 303 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/anchor.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (421), with no line terminators
Hash bbe641f4e6dbec59595d6c793d34bdc1
6068b5148516e7d0560797a4ae9baa27fed4936f
b305cb1a8e9b7295c3c5a0c884a2e3543a486cbb8853d5870aaa7f7e2d8c9ba8
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/anchor.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 303
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/link_crypter.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 304 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/link_crypter.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (461), with no line terminators
Hash 6feb593e0f19610943fcea5e30c14a53
09206eeaf9bb3ee740f5d39dd9fd626130e2e853
7b23263ca15c5e7549d4c2e95fc98477ec9f64d009493be9a761d18f6886688e
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/link_crypter.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 304
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/cookie_bar.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 328 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/cookie_bar.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (500), with no line terminators
Hash 81ef020540040934cdf5eba74a0ccd51
cd627c0e7224801d96253ec91f2477ac5eaaf589
e4d93e2a1a791a452be21c5eaa39297ff0d9a9300ba52b2c734d9ebfd6db0a4a
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/cookie_bar.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 328
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/slider_flyover.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 139 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/slider_flyover.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with no line terminators
Hash 69c442a85688d019f0903ea105fd26f7
a1e57ff19369cde0927178854f5c9617e1587cd3
bb83330d884fdf87f576327a45487e7a36a647ebd0ece72051e7747d1867619b
GET /templates/Honeygrid/assets/javascript/engine/widgets/slider_flyover.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 139
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/pageup.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 360 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/pageup.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (566), with no line terminators
Hash a7ef88f3fb72965142c6cb7fbf47db86
befc7e660fb7f780065891ae2321d7e5e9371906
5679c494a7f2d163c29a5cc38228ed435932189e58ad362a351866e14a71863c
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/pageup.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 360
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/transitions.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 1.3 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/transitions.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (1987), with no line terminators
Hash 83e50b59281a4438121295be78e09463
75812a85b942116379ae575ffa26c9f4303c7d15
c28f57235b5b5b999a318c2502cad68aaa1947daea804e3f17dfe5fe3cabf66a
GET /templates/Honeygrid/assets/javascript/engine/widgets/transitions.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-7c3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 465 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (869), with no line terminators
Hash 91e071e8e305632e85bd0becc5ce6256
59b7c5a9b1a91f8f5a333cad5201234b2fb60510
3288598f9d8887b3712ef52b63848a53e743e606a8f0c223353cfdae953746d5
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/libs/responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 465
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/JSEngine/build/vendor/jQuery-rwdImageMaps/jquery.rwdImageMaps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 433 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/JSEngine/build/vendor/jQuery-rwdImageMaps/jquery.rwdImageMaps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (743), with no line terminators
Hash 6a643a05193e7a92bab3b8a71adf4464
db43381d483198e7cc0cdb92e08e468425221207
c75c5c4dee18c8f80e1077ec3b9b8cbd59d40e840bf72208cdefc4c0d721d3f4
GET /JSEngine/build/vendor/jQuery-rwdImageMaps/jquery.rwdImageMaps.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 433
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:25:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/JSEngine/build/libs/xhr.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 396 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/JSEngine/build/libs/xhr.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (722), with no line terminators
Hash 2499317d96922d26fc0f39b48457a0fb
4222ce27d84b0a5bff368fdce0adaedfef706f25
5027a03c4bc7fd21445a1d7a7052c77af514674c8636232a7bf52e2ca105e60c
Analyzer Verdict Alert fortinet Phishing
GET /JSEngine/build/libs/xhr.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
content-length: 396
x-accel-version: 0.01
last-modified: Mon, 10 Dec 2018 10:25:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 3.0 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (9165), with no line terminators
Hash ef10dc441f78cea3f5158d2a5c895c80
5362ad601f89862ce15768f17ba661e3330df6cc
2cf7086046a8b8566dddbd8aea3757d3e3654d818e8c335a0d32174077360c52
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-23cd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/fonts/fontawesome-free/fa-solid-900.woff2
85.214.212.150200 OK 74 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/fonts/fontawesome-free/fa-solid-900.woff2
IP 85.214.212.150:0
File type Web Open Font Format (Version 2), TrueType, length 73852, version 1.0\012- data
Hash fb493903265cad425ccdf8e04fc2de61
fef2f08d60e907750df0bc41ce64a7139642ddf0
7798165ee5a3c6809310d8261dcbe7c8d0c12d795b7b09a71af3eb86ec8f33f2
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/fonts/fontawesome-free/fa-solid-900.woff2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/main.min.css?bust=1633012520
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/font-woff2
content-length: 73852
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: "5c0e3ef2-1207c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5026
Expires: Mon, 29 Aug 2022 00:56:41 GMT
Date: Sun, 28 Aug 2022 23:32:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5026
Expires: Mon, 29 Aug 2022 00:56:41 GMT
Date: Sun, 28 Aug 2022 23:32:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5026
Expires: Mon, 29 Aug 2022 00:56:41 GMT
Date: Sun, 28 Aug 2022 23:32:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5026
Expires: Mon, 29 Aug 2022 00:56:41 GMT
Date: Sun, 28 Aug 2022 23:32:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d6fc243-1f36-4e7f-8ae5-c9926e27d40b.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d6fc243-1f36-4e7f-8ae5-c9926e27d40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 182339e49eb50a6d89fed9b4ac4bc39f
0909d2250d8efc3093f15401713da4c74ba6707b
bc6fac01cec90f56f665671e2abab894752b9d8f1b1d5551e4d83cc53f0d4251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d6fc243-1f36-4e7f-8ae5-c9926e27d40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7384
x-amzn-requestid: 8c864d07-cb4e-44db-85f0-ebea10e67aaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XV7EPG0mIAMFRGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6305721a-32398abd1da8b41f48b4755c;Sampled=0
x-amzn-remapped-date: Wed, 24 Aug 2022 00:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xerdghgmDaScECzA415SNpFYkoDKhddx_5mP2dszmZlmRxjtyJ8_og==
via: 1.1 759bceededb9469e75c24a46c03d64bc.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 21:44:27 GMT
age: 6508
etag: "0909d2250d8efc3093f15401713da4c74ba6707b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F019a3a4e-a5ad-42c9-9676-e06c201f0304.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F019a3a4e-a5ad-42c9-9676-e06c201f0304.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfbd0626ecb5adb59b2811a904e21554
cd601502840615ed0e7e23f8f95b5b2853d92494
0fec9f313dcac3ac74714bd4601bf6c72f4a3d9804b8b35a4c9dab0847234aa1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F019a3a4e-a5ad-42c9-9676-e06c201f0304.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4764
x-amzn-requestid: ab79456a-df36-48fa-b902-343976389a22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xg8YcGIwIAMFlEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309da9c-3850813f0a75f52c5337b6db;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 08:49:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BJJYpOQzr3izdbdBzAAgUWJaskTKh8vyLKQdRSXQLfJbdIhTkkyQew==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 21:36:15 GMT
age: 51531
etag: "cd601502840615ed0e7e23f8f95b5b2853d92494"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/slider_responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 8.1 kB URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/slider_responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
File type ASCII text, with very long lines (2109), with no line terminators
Hash a4e53128fb3fa0dfdd74692e89d798f7
c2412cbadb2accbdae75f432b3a987d2c24f5041
09ce63addf371f9090b0aa3ba836ab42268be03b70893dca00c14be0ccb4f0d6
GET /templates/Honeygrid/assets/javascript/engine/widgets/slider_responsive.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-83d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe04819fd-358b-4a07-ac19-c8d362bb224a.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe04819fd-358b-4a07-ac19-c8d362bb224a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a52ba09a9d43a19fcf29e9a58975b9d
6dfa90f84160f605f1b101c36aaabe5fe5f7a175
eb074c4b09417d105503eb463633d0ca4ff0909b49be8e17d1b08930cf54792f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe04819fd-358b-4a07-ac19-c8d362bb224a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6963
x-amzn-requestid: 61968774-e3a0-4714-ba8c-85fe6b5f45cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjxDeHr9IAMFh3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630afbaf-276942a451abbd640333d383;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 05:22:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z66XHh2Wq8iMIZsPSzqKKAjGrQBqVxy3ahh4DNeWIclVrEuA85Y_9A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 21:35:03 GMT
etag: "6dfa90f84160f605f1b101c36aaabe5fe5f7a175"
content-type: image/jpeg
age: 7072
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a7959a-ba16-4840-a4e4-ca7b2c6305c1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a7959a-ba16-4840-a4e4-ca7b2c6305c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76021ba70733e8d4647f29e4c990180c
66558c36958c9162188e7aeef27c38e0c4b37cdd
c5278295212999c6941d57d5cee8f4d33447302af0eb74985f5dae48434607c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a7959a-ba16-4840-a4e4-ca7b2c6305c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10319
x-amzn-requestid: 4f0cb1b4-c2a6-410a-965c-4cc72459484a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XhG-yG-eIAMFbQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309eb91-58fb7017711dd2a56fe5ef79;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 10:01:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmPdUNF6ZKhuq14rDdxLIjrde0pZyE5QH4vMwPSnCxtZDYp2cZKxPg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 21:37:45 GMT
age: 6910
etag: "66558c36958c9162188e7aeef27c38e0c4b37cdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe600767-2c1e-4d22-91c8-20f5380dedf3.webp
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe600767-2c1e-4d22-91c8-20f5380dedf3.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 802bfe7acd4327df18702f409e40cfdb
98c7958594a60d494ee526a3d252896d568b6bf2
8ae866f6eab5d5c3376e105e24aa40e402148b22128a0c5605dbe8feea1c07e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe600767-2c1e-4d22-91c8-20f5380dedf3.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6829
x-amzn-requestid: 6957528b-2272-4731-a98b-833a39b043af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xd4EMH3WIAMFlkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308a081-75bbb24862cf340b5b823539;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 10:29:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: k_s3VPqSeYNsj-GslCxAICdiqBlsjb1eibuGu3Q7uNQ1GT9vEJCa1Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 22:14:05 GMT
age: 4730
etag: "98c7958594a60d494ee526a3d252896d568b6bf2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd51935d9-640c-4fb7-a0a6-2bf697c44bdc.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd51935d9-640c-4fb7-a0a6-2bf697c44bdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb6279d7b8476f6f50d43363c1595b8a
ffdf31466f9fe7363f99994ab19191f96d54c240
7b6f362f762730345a2faa4a68cd864b664721d20fd28c92e00f3c08ab6e1d10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd51935d9-640c-4fb7-a0a6-2bf697c44bdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7548
x-amzn-requestid: 9e820d78-c78c-4248-99c0-89e95123d4cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdDKiFwCoAMF6bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63084bdc-2d116abb1015fde9605c13bf;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 04:28:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O71hxQElYKuqKGvDiqTu1KD7hhkV4RDC5z--9qtQCR7YUoJM-PPDDw==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 21:54:35 GMT
age: 5906
etag: "ffdf31466f9fe7363f99994ab19191f96d54c240"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/mobile_menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/mobile_menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
GET /templates/Honeygrid/assets/javascript/engine/widgets/mobile_menu.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-6db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/live_search.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/live_search.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
GET /templates/Honeygrid/assets/javascript/engine/widgets/live_search.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-825"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/init-de.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/init-de.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/init-de.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 04 Oct 2021 08:10:10 GMT
etag: W/"615ab6e2-85d13"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/gm/javascript/GMCounter.js
85.214.212.150403 Forbidden 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/gm/javascript/GMCounter.js
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET /gm/javascript/GMCounter.js HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: text/html
last-modified: Tue, 11 Sep 2018 15:44:29 GMT
etag: W/"31b-5759a596ffbf2"
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/dropdown.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/dropdown.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
GET /templates/Honeygrid/assets/javascript/engine/widgets/dropdown.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-cf7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/swiper.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/swiper.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/swiper.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-12e3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/gm_javascript.js.php?page=Index¤t_template=Honeygrid
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/gm_javascript.js.php?page=Index¤t_template=Honeygrid
IP 85.214.212.150:0
GET /gm_javascript.js.php?page=Index¤t_template=Honeygrid HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: text/javascript; charset=utf-8
cache-control: public
expires: Wed, 28 Sep 2022 23:32:54 GMT
pragma:
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-powered-by: PHP/7.2.34, PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
GET /templates/Honeygrid/assets/javascript/engine/libs/modal.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-111b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:53 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-robots-tag: index,follow
content-encoding: gzip
vary: Accept-Encoding
set-cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq; path=/; domain=.der-kerzenmacher-2021-neue-preise.vitoweb.de; HttpOnly
x-content-type-options: nosniff
x-powered-by: PHP/7.2.34, PleskLin
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/input_number.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/input_number.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/widgets/input_number.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-7ae"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/responsive_image_loader.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/widgets/responsive_image_loader.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
GET /templates/Honeygrid/assets/javascript/engine/widgets/responsive_image_loader.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-60f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/events.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
85.214.212.150200 OK 0 B URL HTTP/2 der-kerzenmacher-2021-neue-preise.vitoweb.de/templates/Honeygrid/assets/javascript/engine/libs/events.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2
IP 85.214.212.150:0
Analyzer Verdict Alert fortinet Phishing
GET /templates/Honeygrid/assets/javascript/engine/libs/events.min.js?bust=57b20b5474a362e607aba1fc7dcc8bc2 HTTP/1.1
Host: der-kerzenmacher-2021-neue-preise.vitoweb.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://der-kerzenmacher-2021-neue-preise.vitoweb.de/
Cookie: XTCsid=gqomu2kcru2rbq6s08av6v8tnq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 23:32:54 GMT
content-type: application/javascript
last-modified: Mon, 10 Dec 2018 10:24:50 GMT
etag: W/"5c0e3ef2-509"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2