acars-limos.de/
202.61.232.61301 Moved Permanently 298 B IP 202.61.232.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c01fe09dac08ddc9f9af250100e696b3
3b6e0d5d421e2eb9e35fcd2577777e2a15bc1efb
7cb8c887ac90346feec0cc4a34046c38fe85ae0f454741c1be0d0b7f49a0c8d3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 06 Feb 2023 03:49:31 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 298
Connection: keep-alive
Location: http://www.acars-limos.de/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8953
Expires: Mon, 06 Feb 2023 06:18:44 GMT
Date: Mon, 06 Feb 2023 03:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12169
Expires: Mon, 06 Feb 2023 07:12:20 GMT
Date: Mon, 06 Feb 2023 03:49:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 03:34:01 GMT
content-type: application/json
age: 930
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18898
Expires: Mon, 06 Feb 2023 09:04:29 GMT
Date: Mon, 06 Feb 2023 03:49:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SSjBEB6bvbPvDP9oWoJBmch5uyO+9kOty1aM56/2DdtKTdJJRs2IHLLi2Ue+5NYuyFXqlDn0EzY=
x-amz-request-id: GNP1TGG4R38DH9BY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 02:53:32 GMT
age: 3359
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.acars-limos.de/
202.61.232.61200 OK 5.5 kB IP 202.61.232.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1527)
Hash 184516c7d5cef333b2ac29a2dd400ee4
e4f6cc3a6923ed5cca4788e9b94a1588ba796750
f8e32b7866868cd873dfd5f576b50492e70bd50e5dbf68ed94e432ef3f64dae8
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/html
Last-Modified: Thu, 23 Feb 2017 22:42:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58af654a-4eaf"
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 03:49:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.acars-limos.de/css/cform.css
202.61.232.61200 OK 511 B URL HTTP/1.1 www.acars-limos.de/css/cform.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash e2cc8452273090382b8f8e4a61b924f6
0c882c5a0b402ac284b15f5b9999996b99673557
6502fc0c7e5b984c1c96c4729aa434e70666f613576c2304da658cc78917765e
GET /css/cform.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-49c"
Content-Encoding: gzip
www.acars-limos.de/css/tp_twitter_plugin.css
202.61.232.61200 OK 260 B URL HTTP/1.1 www.acars-limos.de/css/tp_twitter_plugin.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 0d196db6a4481e3a709e2008e3e09ea5
3b11a2ce7162401aa1a6cf97cc4269bfe419db80
a9efdb2e16d8461065c5cacd36645b11dfd1cfbf93065a1f18fad957d33873c7
GET /css/tp_twitter_plugin.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Content-Length: 260
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
ETag: "1ee-544df4f46f780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.acars-limos.de/js/owl-carousel/owl.carousel.min.js
202.61.232.61200 OK 5.7 kB URL HTTP/1.1 www.acars-limos.de/js/owl-carousel/owl.carousel.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (11554), with CRLF line terminators
Hash 3d86c2e452787ab3a9d8f2c4677f5be4
9dbecc50fcfc1867b6f3a55d724e2728c075cddc
eb4d7382bc1c83f40bc268ad597702cde4b9a7822e6297ada960f4c9bc6f6ca2
Analyzer Verdict Alert fortinet Phishing
GET /js/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-2dc6"
Content-Encoding: gzip
www.acars-limos.de/css/prettyPhoto.css
202.61.232.61200 OK 3.5 kB URL HTTP/1.1 www.acars-limos.de/css/prettyPhoto.css
IP 202.61.232.61:0
File type ASCII text, with very long lines (402), with CRLF line terminators
Hash 1959e75721bb0d54be277cc96b3bae0d
669fbacf98e290008e00d75ae97831ab98ed01cb
032357490cd3d8e80a311b5a20ca1afc0951d762015821ddf56dc248d2a35996
GET /css/prettyPhoto.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-4e59"
Content-Encoding: gzip
www.acars-limos.de/css/owl.carousel.css
202.61.232.61200 OK 565 B URL HTTP/1.1 www.acars-limos.de/css/owl.carousel.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 057d9ea55649dd4515460aaac1447003
12a880c484846d72549cfe1740b6fe0e5462b22d
86e8b5ce65b532370a29b942809658a604b6394faddf3477354e607651de1895
GET /css/owl.carousel.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-5ae"
Content-Encoding: gzip
www.acars-limos.de/css/owl.theme.css
202.61.232.61200 OK 660 B URL HTTP/1.1 www.acars-limos.de/css/owl.theme.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 7c844fd0be17be60f8f7d359b730138b
7f169d6a2ab57d2d93c6efb9095eea6b8b290876
8517fee53f11a899c3c4995132e1469789adb21b20ab0ac8574d794e69cd9b06
GET /css/owl.theme.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-6d4"
Content-Encoding: gzip
www.acars-limos.de/css/jquery.ui.all.css
202.61.232.61200 OK 222 B URL HTTP/1.1 www.acars-limos.de/css/jquery.ui.all.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash dbd94086a2d5fdcaf9ad22ff2bae51f0
52a694626e61b83431a1928b3680987e9c7cfc13
1958008c65490966472c17fe9104da630b25792879944be7d2e937f191aa5dd2
GET /css/jquery.ui.all.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Content-Length: 222
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
ETag: "134-544df4f46f780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.acars-limos.de/css/responsive.css
202.61.232.61200 OK 4.3 kB URL HTTP/1.1 www.acars-limos.de/css/responsive.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 6bef86770fa4819cb36542b36f81442a
cc8c42c51f266d08c4bb8b36271773625c68f1dc
2a369806c7d0499070827fcbef234d78f28c39583c9062628e3058c3e0b4e458
GET /css/responsive.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Thu, 09 Feb 2017 21:42:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589ce25e-4278"
Content-Encoding: gzip
www.acars-limos.de/css/style-colors.css
202.61.232.61200 OK 1.8 kB URL HTTP/1.1 www.acars-limos.de/css/style-colors.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 37f160f6fb383363e8b12eb4cea99a11
94b1062288076fdaee91817b746c06142a659cb5
31300cf8197a31e001daf09800f493576b40c326c0be9d323b39505a378a3f9c
GET /css/style-colors.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-18e1"
Content-Encoding: gzip
www.acars-limos.de/css/style-2.css
202.61.232.61200 OK 436 B URL HTTP/1.1 www.acars-limos.de/css/style-2.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 074c7174f5e87679123471724954a7f8
5b6d55188044fad51f95581941a008c5eff9af41
ba51a4f9728939ce117c55be2662a0b4a92a8407f99c16a2227196d60654f4fd
GET /css/style-2.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-623"
Content-Encoding: gzip
www.acars-limos.de/css/exo.css
202.61.232.61200 OK 333 B URL HTTP/1.1 www.acars-limos.de/css/exo.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 3fb099904544782ac10a4cd0dae7393a
28557cd80b8753d679884d70c2489d738dc218cf
5f2af2e4bb9a6f76ec1f7537da59b87041ff90a44f7a82b2f5013dd2b9b530f8
GET /css/exo.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-825"
Content-Encoding: gzip
www.acars-limos.de/css/fontawesome.css
202.61.232.61200 OK 6.5 kB URL HTTP/1.1 www.acars-limos.de/css/fontawesome.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 62de78c1cd6a94f7854b51aeb5e7a033
d1e4f96e90f3409449ed431364cf9460383cf619
90efadafdd5217f15869ccb63415e38342576bf4fbbececd4fa5f3b6a6574699
GET /css/fontawesome.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-766e"
Content-Encoding: gzip
www.acars-limos.de/css/skins/red/style.css
202.61.232.61200 OK 2.0 kB URL HTTP/1.1 www.acars-limos.de/css/skins/red/style.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 5f269bf286c0bca26b4b3211260081cb
3ecd6287a03b2902f5ebc3d8c90f2ba2ba336e0e
381519bb42010085ba5fc13e0fff9383807dbcb3d57948b4b40ce1ae56bf0400
GET /css/skins/red/style.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 13:09:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665c9a-1d48"
Content-Encoding: gzip
www.acars-limos.de/css/skins/red/images.css
202.61.232.61200 OK 402 B URL HTTP/1.1 www.acars-limos.de/css/skins/red/images.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash d727ab08dea9cebe0640991127f51f50
6329e46fb46b00d9b52a5af6f59bab124079f917
6087fd76a232ca92d169be9da839e893609d5800686b5af5760a22f5314f60a1
GET /css/skins/red/images.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-46b"
Content-Encoding: gzip
www.acars-limos.de/css/custom.css
202.61.232.61200 OK 1.3 kB URL HTTP/1.1 www.acars-limos.de/css/custom.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 8fa6b5bc3bf278fee1c46511b2253d71
40177ef34b783fed9558567ad9dfaf9bc96e254f
6ee921a9dbeb8634b096372a19c922dfa88befbd95b5a7183e3b807b432ef8c4
GET /css/custom.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:52:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"586658aa-d1f"
Content-Encoding: gzip
www.acars-limos.de/js/jquery/jquery-migrate.min.js
202.61.232.61200 OK 3.3 kB URL HTTP/1.1 www.acars-limos.de/js/jquery/jquery-migrate.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 0f1f91a3df6de950536f42012a301868
fbd455d2fe9c855eba0b19df62f7b66df120f9e3
f3e691705dc0e2cc80ab220349af82f3bf13a5720685b7dadad4ef87a1ab39c8
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-1c20"
Content-Encoding: gzip
www.acars-limos.de/js/jquery.form.min.js
202.61.232.61200 OK 6.4 kB URL HTTP/1.1 www.acars-limos.de/js/jquery.form.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (14900), with CRLF line terminators
Hash 0c3522f2c4d607575ac213e73321754f
c3299a482ef55d67e2162012be4a4d78be2e0f10
792ccfc2efc4c0001366488efcef4dff98bfaaafd50ddfc7872aecd89808c189
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.form.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-3b9a"
Content-Encoding: gzip
www.acars-limos.de/js/contact-form.js
202.61.232.61200 OK 610 B URL HTTP/1.1 www.acars-limos.de/js/contact-form.js
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash bcb79b2808e1a17e8cb2a36917ff39f4
9dfff85f713141f95784ea9566c0fe94f422ede9
164b6457df10a6875ada15d63d63a89e45c6667205648c933c2a7c16670191d8
Analyzer Verdict Alert fortinet Phishing
GET /js/contact-form.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 10 Feb 2017 23:45:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589e50b6-5d5"
Content-Encoding: gzip
www.acars-limos.de/js/jquery/jquery.js
202.61.232.61200 OK 39 kB URL HTTP/1.1 www.acars-limos.de/js/jquery/jquery.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (32047), with CRLF line terminators
Hash 7818c713ae7a1ce5a9a776faa84d2597
2ed502c1dfcbcf518b73f9d8646f3b906613ad41
b817d379d03c9994f3d4c5fbb22cbeeb22440d7beb667ca11201c8678fec91c0
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/jquery.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-176d5"
Content-Encoding: gzip
www.acars-limos.de/rs-plugin/js/jquery.themepunch.revolution.min.js
202.61.232.61200 OK 32 kB URL HTTP/1.1 www.acars-limos.de/rs-plugin/js/jquery.themepunch.revolution.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (32667), with CRLF line terminators
Hash 1d745e7c1ee3632df5a091b765d8e2b2
48bd0f3a41f82c84d2bde4dedfda2259ab6a20c5
a7dcde815d980dec1c7100649a3358130e939359476aa8bff9872c9cae448662
Analyzer Verdict Alert fortinet Phishing
GET /rs-plugin/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-1adda"
Content-Encoding: gzip
www.acars-limos.de/js/jquery/ui/core.min.js
202.61.232.61200 OK 1.9 kB URL HTTP/1.1 www.acars-limos.de/js/jquery/ui/core.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (3772), with CRLF line terminators
Hash 80e6b22df2759d9f7f041256350aeb7a
64f7e6048f51e32ffca88481e1311ac5a65d652d
182b86fd538215ee84b9f1d151372045ab4c88ee0e0c00b152a9dbd265bfe0d9
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/ui/core.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-fa7"
Content-Encoding: gzip
www.acars-limos.de/rs-plugin/js/jquery.themepunch.tools.min.js
202.61.232.61200 OK 40 kB URL HTTP/1.1 www.acars-limos.de/rs-plugin/js/jquery.themepunch.tools.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (25616), with CRLF line terminators
Hash 063ea03f82d6a2a4837bcd7471a8b0f2
95fb0be1b0610344ded85b4e6f832721773ed618
73363354b7e6513da4a2a6ca1d163bf7d03d96a12252958d02fd37e8734f5a15
Analyzer Verdict Alert fortinet Phishing
GET /rs-plugin/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-1888e"
Content-Encoding: gzip
www.acars-limos.de/js/jquery/ui/widget.min.js
202.61.232.61200 OK 2.8 kB URL HTTP/1.1 www.acars-limos.de/js/jquery/ui/widget.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (6684), with CRLF line terminators
Hash 826db338efbb5dd959ac894b80108183
b27a7b8a1783f292244d7a47f0d6f27088de2868
4eba00d307724be7a9afe1b769dc9afb917a2160288d46d67f0044ddcbb3d369
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/ui/widget.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-1b06"
Content-Encoding: gzip
www.acars-limos.de/js/jquery/ui/accordion.min.js
202.61.232.61200 OK 3.1 kB URL HTTP/1.1 www.acars-limos.de/js/jquery/ui/accordion.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (8362), with CRLF line terminators
Hash 8c62c97a383cfa2fb3a39f12600d726a
c233a510a09e3a6f86a40f13f2ad02d203f50d06
da10851c96300465e4bd5b03cbdce3f8ceb67c9314fba91d9234a006a34c9b27
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/ui/accordion.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-2193"
Content-Encoding: gzip
www.acars-limos.de/js/jquery.swiper.min.js
202.61.232.61200 OK 12 kB URL HTTP/1.1 www.acars-limos.de/js/jquery.swiper.min.js
IP 202.61.232.61:0
File type ASCII text, with very long lines (39796), with CRLF line terminators
Hash 77994640da10aa3f3c78006dbf70eaba
7b3bc47287101b3a0ee554b0e77a59548a1e1c21
28ddc5b68f416dcd72a8d1e859c97feabf038c6ab4b02a99f65835996252f986
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.swiper.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-9c95"
Content-Encoding: gzip
www.acars-limos.de/rs-plugin/css/settings.css
202.61.232.61200 OK 12 kB URL HTTP/1.1 www.acars-limos.de/rs-plugin/css/settings.css
IP 202.61.232.61:0
File type Unicode text, UTF-8 text, with very long lines (374), with CRLF line terminators
Hash 16c9957ec660163a45fe2e1180f1899f
edbf72d93b566f767efa5d4e14b7fefdfc39095d
ec502473c1ba2c9f2e68a1a7debb2907ec1d94187ea2243a9d10e975df0e3447
GET /rs-plugin/css/settings.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-dfef"
Content-Encoding: gzip
www.acars-limos.de/css/style.css
202.61.232.61200 OK 770 B URL HTTP/1.1 www.acars-limos.de/css/style.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 19a67e767f925b9ead4be6462e20054f
d16124df9bbd555c167e47007bddfa341086270a
e3369a78c87dde0868c3764677e91502d811d47265ce94921cf697cd82cd2abf
GET /css/style.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 10 Feb 2017 23:33:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589e4daf-6ad"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:49:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acars-limos.de/js/mfn.menu.js
202.61.232.61200 OK 736 B URL HTTP/1.1 www.acars-limos.de/js/mfn.menu.js
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash c92141f7afed120b7c2603b01da69709
90a84fc93c4aa98a3a039238c83e4d368b2c16f3
00e2770ba679208ca05dda7a817e9b46742c2fb5ac8e7f49dcb99a5b45a589da
Analyzer Verdict Alert fortinet Phishing
GET /js/mfn.menu.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-718"
Content-Encoding: gzip
www.acars-limos.de/js/mfn.fsa.js
202.61.232.61200 OK 1.6 kB URL HTTP/1.1 www.acars-limos.de/js/mfn.fsa.js
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash cdcaca7f28fee9fba1640efc17470980
fe58bdd9df23e6cb9445e50bb96fbd94a69c5e01
c828ab5b7566d380f345a212c8a6f3b46ea54cc15f3a03c6fc50b4206e65e80e
Analyzer Verdict Alert fortinet Phishing
GET /js/mfn.fsa.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-11ce"
Content-Encoding: gzip
www.acars-limos.de/js/scripts.js
202.61.232.61200 OK 3.4 kB URL HTTP/1.1 www.acars-limos.de/js/scripts.js
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 57ff6718acfa9aef9854e1ed98868db8
410462cbba2564ca8b1807edba286787f57471c1
45c76091bb8d89e7d423d713b411da63a076cb167fb155de310edd1b67f911ee
Analyzer Verdict Alert fortinet Phishing
GET /js/scripts.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Thu, 02 Feb 2017 12:29:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5893261c-3811"
Content-Encoding: gzip
www.acars-limos.de/css/ui/jquery.ui.base.css
202.61.232.61200 OK 75 B URL HTTP/1.1 www.acars-limos.de/css/ui/jquery.ui.base.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 6a285551f29b50806f4f82930505b5c9
a72fb3efdfe649759ae6a0429db80129792ff86f
fd14a00916a6a54f3fdf721404ebd271557644e6c6aefc7b63c8d4b9357480a0
GET /css/ui/jquery.ui.base.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/jquery.ui.all.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Content-Length: 75
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
ETag: "6f-544df4f657c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.acars-limos.de/css/ui/jquery.ui.theme.css
202.61.232.61200 OK 3.3 kB URL HTTP/1.1 www.acars-limos.de/css/ui/jquery.ui.theme.css
IP 202.61.232.61:0
File type ASCII text, with very long lines (551), with CRLF line terminators
Hash 6c62f03319bd34068f54a532bc18c1a0
0f6140f016a219c1f5b07f3a057bb2a84f0d7b32
fb05bd327a93c8d66709c96c546b792c0029819bab1f99c609f89932c5006bc3
GET /css/ui/jquery.ui.theme.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/jquery.ui.all.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665270-4557"
Content-Encoding: gzip
www.acars-limos.de/js/jquery.plugins.js
202.61.232.61200 OK 18 kB URL HTTP/1.1 www.acars-limos.de/js/jquery.plugins.js
IP 202.61.232.61:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (21844), with CRLF line terminators
Hash f94bf4e5a0fd6ba748f30b58c1a6e5d5
ed326977f041ab66e4414bcdba4cbeaf50dd3ff8
4b1a0979472cf9d51bb26215325f211e740754156c2fcba2dbf26980f3cd4c8f
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.plugins.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-d27c"
Content-Encoding: gzip
www.acars-limos.de/cars/porsche-paramera/1.jpg
202.61.232.61200 OK 99 kB URL HTTP/1.1 www.acars-limos.de/cars/porsche-paramera/1.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Hash 8805c2107360680e80daced2169b0819
c3c733b19f63a79c8e36925ed9b4e186026cf837
376b83eae1db9f0d0a8324c4e49ff561c3a99a676bbc98013c85e8a1e30c8aa9
GET /cars/porsche-paramera/1.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 98771
Last-Modified: Fri, 30 Dec 2016 13:19:26 GMT
Connection: keep-alive
ETag: "58665ede-181d3"
Accept-Ranges: bytes
www.acars-limos.de/css/base.css
202.61.232.61200 OK 2.1 kB URL HTTP/1.1 www.acars-limos.de/css/base.css
IP 202.61.232.61:0
File type ASCII text, with very long lines (483), with CRLF line terminators
Hash d9d0d31dfd88e4bd00ae998d1ce5a4ef
e960d8c2f6e9035a153ceabcda78a60d4658c399
8d3da04037ed68c4c094e30637b047bf9ad0195514035a5c7f282f89afd44c5e
GET /css/base.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Thu, 09 Feb 2017 22:40:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589cefc6-18a7"
Content-Encoding: gzip
www.acars-limos.de/images/acars-logo.jpg
202.61.232.61200 OK 23 kB URL HTTP/1.1 www.acars-limos.de/images/acars-logo.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, resolutionunit=3, software=MAGIX Web Designer, datetime=2016:11:27 22:13:52], baseline, precision 8, 304x130, components 3\012- data
Hash 3848a485c145cb249dc727cdad3d674f
6fac6c3ef256ec303ad2b30011f1ef2a11433ac1
5360cab65b03622ca40e69cbc5d1886647f5c3b5df987d1c9e2468bdf9d7acf3
GET /images/acars-logo.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 23214
Last-Modified: Thu, 22 Dec 2016 22:09:44 GMT
Connection: keep-alive
ETag: "585c4f28-5aae"
Accept-Ranges: bytes
www.acars-limos.de/css/buttons.css
202.61.232.61200 OK 357 B URL HTTP/1.1 www.acars-limos.de/css/buttons.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash f711eb66c6b1a5355177267fa03f7dbb
e3a7c3f63123265c9cfc1ee79b2b5e7b430930a6
a3b721f8283b511d740a747ce761be91bda1fc91d46c19ba74c233a0bbc219e5
GET /css/buttons.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-56d"
Content-Encoding: gzip
www.acars-limos.de/css/grid.css
202.61.232.61200 OK 847 B URL HTTP/1.1 www.acars-limos.de/css/grid.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 3e8a1f1eeb3574bd4414a120b95fd6a3
2487886b96f4852ddc611365d453ea3587655bf5
b854481ac018c7ed4a87da765641bffc6587e989f2643dfa4a9ab4139b0d06a8
GET /css/grid.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-96c"
Content-Encoding: gzip
www.acars-limos.de/css/layout.css
202.61.232.61200 OK 6.8 kB URL HTTP/1.1 www.acars-limos.de/css/layout.css
IP 202.61.232.61:0
File type ASCII text, with very long lines (437), with CRLF line terminators
Hash 8d9d8fa20b41df52ec3e4cfbd61262f1
9dbd3b77d9cb70c6366ae6002508c8ab00a99d8d
43fb29974b5ad023631f6ba1c2cd0f6f6f3656b7c9d5a5e11d13001791dbc50b
GET /css/layout.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-6c81"
Content-Encoding: gzip
www.acars-limos.de/cars/Hochzeits-Limo/12.jpg
202.61.232.61200 OK 604 kB URL HTTP/1.1 www.acars-limos.de/cars/Hochzeits-Limo/12.jpg
IP 202.61.232.61:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=500, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=750], baseline, precision 8, 1240x600, components 3\012- data
Size 604 kB (604359 bytes)
Hash 72bac46f18d044e139afd9a3047f023a
4603bbfc54bee16872963a7f5c88447b61a304df
3efadce5e0ca1588ff25014b11a1b08f429b9b81d45264f5d3523fcc8ab0d7dc
GET /cars/Hochzeits-Limo/12.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 604359
Last-Modified: Thu, 23 Feb 2017 21:51:19 GMT
Connection: keep-alive
ETag: "58af5957-938c7"
Accept-Ranges: bytes
www.acars-limos.de/css/shortcodes.css
202.61.232.61200 OK 9.1 kB URL HTTP/1.1 www.acars-limos.de/css/shortcodes.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash d61a0f6a907e1c32f46e417b25b509c5
52b64ee877f126f74ea67913950c6204be11e3ce
433f0c5abba482d1d22cffc5564e8c8f7c8e8d4c527120d6f28590c3591e73ef
GET /css/shortcodes.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Thu, 09 Feb 2017 21:38:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589ce160-9eaf"
Content-Encoding: gzip
www.acars-limos.de/css/animations.css
202.61.232.61200 OK 597 B URL HTTP/1.1 www.acars-limos.de/css/animations.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 8185d6de9eddb4801d7eab200962f2c6
c9f797ce02be92fc27db6b2da80a8ab415da562d
2af5a2180f83a272a547121e40a54928777a6bf61b2bcd4bdf52cc9ae80af28f
GET /css/animations.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5866526e-d49"
Content-Encoding: gzip
www.acars-limos.de/css/variables.css
202.61.232.61200 OK 1.8 kB URL HTTP/1.1 www.acars-limos.de/css/variables.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 99e787e8fa8af814dbf91a8b12165be4
5af03fe30f70dfd67e6d7764235a0b085e79c0df
7c60ab5491c35b5d221ce5330c32a48054218cdac3d6a2f255e6ac92be2ae7c7
GET /css/variables.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Thu, 09 Feb 2017 22:38:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589cef74-15d4"
Content-Encoding: gzip
www.acars-limos.de/cars/Ferrarie/15.jpg
202.61.232.61200 OK 407 kB URL HTTP/1.1 www.acars-limos.de/cars/Ferrarie/15.jpg
IP 202.61.232.61:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2400], progressive, precision 8, 1240x600, components 3\012- data
Size 407 kB (406872 bytes)
Hash 9cf126a95c3ca935b0cc2f76ed63db1a
586df6b901002fbc11a3ab48dc3247d95ebb1006
e0d18f58e3c311ce86f65fa2a8fd79106143cada34fae8deee1a61abb885fe1c
GET /cars/Ferrarie/15.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 406872
Last-Modified: Thu, 23 Feb 2017 21:30:25 GMT
Connection: keep-alive
ETag: "58af5471-63558"
Accept-Ranges: bytes
www.acars-limos.de/cars/Mercedes/4.jpg
202.61.232.61200 OK 196 kB URL HTTP/1.1 www.acars-limos.de/cars/Mercedes/4.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "IRIS:030206_20150113;CREATED:30.12.2016.14:37:58;MODEL:207434;POV:BE280,DZO,SZT;PAINT:040;FABRIC:401;OPTIONS:211,351,411,44R,5", baseline, precision 8, 1920x1080, components 3\012- data
Size 196 kB (195873 bytes)
Hash b0e3fdc81ecfc2e50e83a6b88eaf4814
69cce105715b6c43e1c8168628592abd3081c83d
8ff8fe1ac6efdd7c214dea3d83239278082da1db0c040f554108342e6850bfd3
GET /cars/Mercedes/4.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 195873
Last-Modified: Fri, 30 Dec 2016 13:47:08 GMT
Connection: keep-alive
ETag: "5866655c-2fd21"
Accept-Ranges: bytes
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10305.60773567162!2d8.472594!3d49.778506!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47bd7f4566d4c65b%3A0x8eee07507eeae676!2sWaldstra%C3%9Fe+1%2C+64584+Biebesheim+am+Rhein%2C+Deutschland!5e0!3m2!1sde!2sde!4v1486040929553
142.250.74.164200 OK 911 B URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10305.60773567162!2d8.472594!3d49.778506!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47bd7f4566d4c65b%3A0x8eee07507eeae676!2sWaldstra%C3%9Fe+1%2C+64584+Biebesheim+am+Rhein%2C+Deutschland!5e0!3m2!1sde!2sde!4v1486040929553
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1497)
Hash 84b869a82cf8c773d7b05aa22b6f8262
fac13817f578485442e23e750ffc2215fc84e282
542e56ec5cddb9a51f0488fdb9b5ff7612c52622de86160d799aca231e54d211
GET /maps/embed?pb=!1m14!1m8!1m3!1d10305.60773567162!2d8.472594!3d49.778506!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47bd7f4566d4c65b%3A0x8eee07507eeae676!2sWaldstra%C3%9Fe+1%2C+64584+Biebesheim+am+Rhein%2C+Deutschland!5e0!3m2!1sde!2sde!4v1486040929553 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.acars-limos.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-3eIS3-vAAERTv0nYHrlnOA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
pragma: no-cache
vary: Accept-Language, Origin, X-Origin, Referer
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Mon, 06 Feb 2023 03:49:32 GMT
server: scaffolding on HTTPServer2
content-length: 911
x-xss-protection: 0
x-content-type-options: nosniff
server-timing: gfet4t7; dur=173
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.acars-limos.de/css/ui/jquery.ui.core.css
202.61.232.61200 OK 642 B URL HTTP/1.1 www.acars-limos.de/css/ui/jquery.ui.core.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 637f999c94056c77c71881095880a0e3
aa696ea963b9ad53e4d1b419983a2f113ab7f299
0dd721703c35db21f4fbab4aaa9a6be2ccc3b7792a81c72402189a5bd62e3380
GET /css/ui/jquery.ui.core.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/ui/jquery.ui.base.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665270-54b"
Content-Encoding: gzip
www.acars-limos.de/css/ui/jquery.ui.tabs.css
202.61.232.61200 OK 696 B URL HTTP/1.1 www.acars-limos.de/css/ui/jquery.ui.tabs.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 133005ee0a7b0d82bbe618cd95c1d1c6
2525c5bcd12c1fc2305c617cb8c381cb54674844
86ea7511dcbf83a8047a89fc496e18267df0dfed8764914346ef3ee9aa903b78
GET /css/ui/jquery.ui.tabs.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/ui/jquery.ui.base.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665270-6bc"
Content-Encoding: gzip
www.acars-limos.de/css/ui/jquery.ui.accordion.css
202.61.232.61200 OK 688 B URL HTTP/1.1 www.acars-limos.de/css/ui/jquery.ui.accordion.css
IP 202.61.232.61:0
File type ASCII text, with CRLF line terminators
Hash 9c23ff5a793ab23349abc091d74922cd
edaca80e20aae8bff15147802f43159ad4315bac
4fe5a72f27bc927cd0dd027fab02333a013dae14518a6be54b093aa3ed8820ea
GET /css/ui/jquery.ui.accordion.css HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/ui/jquery.ui.base.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665270-6da"
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 02:51:18 GMT
age: 3494
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:49:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acars-limos.de/cars/Mercedes/1.jpg
202.61.232.61200 OK 224 kB URL HTTP/1.1 www.acars-limos.de/cars/Mercedes/1.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "IRIS:030206_20150113;CREATED:30.12.2016.14:38:15;MODEL:207434;POV:BE340,DZG,SZT;PAINT:040;FABRIC:401;OPTIONS:211,351,411,44R,5", baseline, precision 8, 1920x1080, components 3\012- data
Size 224 kB (223670 bytes)
Hash 4b471db0545381a6883fb54ac571e30c
37c5d0298af16e964454244de006b0c63a6bf324
12794b5ea65819f59e3aea54e3a7c0a23ac1597448f82f4da025714abc541d93
GET /cars/Mercedes/1.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 223670
Last-Modified: Fri, 30 Dec 2016 13:43:06 GMT
Connection: keep-alive
ETag: "5866646a-369b6"
Accept-Ranges: bytes
www.acars-limos.de/images/acars-logo2.jpg
202.61.232.61200 OK 12 kB URL HTTP/1.1 www.acars-limos.de/images/acars-logo2.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=MAGIX Web Designer], baseline, precision 8, 421x254, components 3\012- data
Hash f08ff5e1f21eacf45b35955ddbb406bf
e1afdc484c10799fb7ace8d185952ca05bb6949e
53b24971306f62ed27da086a451a218afb795658e6c54e71239ae12f2745998e
GET /images/acars-logo2.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 12213
Last-Modified: Thu, 22 Dec 2016 22:09:40 GMT
Connection: keep-alive
ETag: "585c4f24-2fb5"
Accept-Ranges: bytes
www.acars-limos.de/cars/Hochzeits-Limo/7.jpg
202.61.232.61200 OK 209 kB URL HTTP/1.1 www.acars-limos.de/cars/Hochzeits-Limo/7.jpg
IP 202.61.232.61:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, comment: "File written by Adobe Photoshop\250 4.0", baseline, precision 8, 750x500, components 3\012- data
Size 209 kB (208851 bytes)
Hash 1ff1006912dc85ef44dcc83463198738
1c7a8cd65671d96d019303efec97565343b38888
5ad5c8d12fed6bd07667c6788fba2219f23595be4d5e12982d2dcb028182f10b
GET /cars/Hochzeits-Limo/7.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 208851
Last-Modified: Wed, 22 Feb 2017 21:18:10 GMT
Connection: keep-alive
ETag: "58ae0012-32fd3"
Accept-Ranges: bytes
www.acars-limos.de/css/fonts/exo-regular-webfont.woff
202.61.232.61200 OK 27 kB URL HTTP/1.1 www.acars-limos.de/css/fonts/exo-regular-webfont.woff
IP 202.61.232.61:0
File type Web Open Font Format, TrueType, length 26600, version 1.0\012- data
Hash 520c77ec4a2df46a820e040e8a179f17
1e8a87c6007716aa34bb628ac9e7a2e78a2ae05e
c6970fe77e76694ebb66fabeb0965afa625364cdeeab8d6b4af27231a945f9a5
Analyzer Verdict Alert fortinet Phishing
GET /css/fonts/exo-regular-webfont.woff HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acars-limos.de/css/exo.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: font/woff
Content-Length: 26600
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Connection: keep-alive
ETag: "58665270-67e8"
Accept-Ranges: bytes
www.acars-limos.de/css/fonts/exo-light-webfont.woff
202.61.232.61200 OK 28 kB URL HTTP/1.1 www.acars-limos.de/css/fonts/exo-light-webfont.woff
IP 202.61.232.61:0
File type Web Open Font Format, TrueType, length 28224, version 1.0\012- data
Hash 0022c1e3ddd71f61651fdccd62b45aa6
89201e082626af008a466dd8cd082323cbccff1b
5f89d7faf7e76ae142bc80e515022478fe3192df45832b8113debf5a704d98de
Analyzer Verdict Alert fortinet Phishing
GET /css/fonts/exo-light-webfont.woff HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acars-limos.de/css/exo.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: font/woff
Content-Length: 28224
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Connection: keep-alive
ETag: "58665270-6e40"
Accept-Ranges: bytes
www.acars-limos.de/css/fonts/exo-bold-webfont.woff
202.61.232.61200 OK 29 kB URL HTTP/1.1 www.acars-limos.de/css/fonts/exo-bold-webfont.woff
IP 202.61.232.61:0
File type Web Open Font Format, TrueType, length 28668, version 1.0\012- data
Hash e06ba728231ad205b9993700c57e712c
6e1c7fb703041e1ed13a18f94d1caf94ef588bdb
06d7d685917fd8aa2adb1f766985d6978ea78524fadb4a3bf3051db3c29ea3ae
Analyzer Verdict Alert fortinet Phishing
GET /css/fonts/exo-bold-webfont.woff HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acars-limos.de/css/exo.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: font/woff
Content-Length: 28668
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Connection: keep-alive
ETag: "58665270-6ffc"
Accept-Ranges: bytes
www.acars-limos.de/css/fonts/fontawesome-webfont.woff
202.61.232.61200 OK 66 kB URL HTTP/1.1 www.acars-limos.de/css/fonts/fontawesome-webfont.woff
IP 202.61.232.61:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
Analyzer Verdict Alert fortinet Phishing
GET /css/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acars-limos.de/css/fontawesome.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: font/woff
Content-Length: 65452
Last-Modified: Fri, 30 Dec 2016 12:26:24 GMT
Connection: keep-alive
ETag: "58665270-ffac"
Accept-Ranges: bytes
www.acars-limos.de/cars/Ferrarie/8.jpg
202.61.232.61200 OK 228 kB URL HTTP/1.1 www.acars-limos.de/cars/Ferrarie/8.jpg
IP 202.61.232.61:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2017:02:23 22:10:23], progressive, precision 8, 700x468, components 3\012- data
Size 228 kB (228428 bytes)
Hash 321756f7849d8eb914e64591c0b4238c
d0dd6bfcc989c5a4c578f250b9030df9cd182210
f3d84f49f34848fe017e30f3677568f52ec6336de0aaf24f79b4d8e997c41ccb
GET /cars/Ferrarie/8.jpg HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/jpeg
Content-Length: 228428
Last-Modified: Thu, 23 Feb 2017 21:16:27 GMT
Connection: keep-alive
ETag: "58af512b-37c4c"
Accept-Ranges: bytes
www.acars-limos.de/php/captcha/captcha.php?%3C?php%20echo%20time();?%3E
202.61.232.61200 OK 2.3 kB URL HTTP/1.1 www.acars-limos.de/php/captcha/captcha.php?%3C?php%20echo%20time();?%3E
IP 202.61.232.61:0
File type PNG image data, 110 x 15, 8-bit/color RGB, non-interlaced\012- data
Hash f52297ccd16a869a74618d834af3dab4
3f23daa16d9f81936615273516df6da47fb16795
f5fbb22f2fb027af2508d366c75a5afd7bf7383b6734350219c750e59485c942
Analyzer Verdict Alert fortinet Phishing
GET /php/captcha/captcha.php?%3C?php%20echo%20time();?%3E HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: no-cache
Set-Cookie: PHPSESSID=f6c573ruqokv2m5o3acmgrskm7; path=/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2798
Expires: Mon, 06 Feb 2023 04:36:10 GMT
Date: Mon, 06 Feb 2023 03:49:32 GMT
Connection: keep-alive
www.acars-limos.de/rs-plugin/assets/loader.gif
202.61.232.61200 OK 2.5 kB URL HTTP/1.1 www.acars-limos.de/rs-plugin/assets/loader.gif
IP 202.61.232.61:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /rs-plugin/assets/loader.gif HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/rs-plugin/css/settings.css
Cookie: PHPSESSID=f6c573ruqokv2m5o3acmgrskm7
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: image/gif
Content-Length: 2545
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Connection: keep-alive
ETag: "58665274-9f1"
Accept-Ranges: bytes
www.acars-limos.de/images/slider_controls.png
202.61.232.61302 Found 286 B URL HTTP/1.1 www.acars-limos.de/images/slider_controls.png
IP 202.61.232.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 34721a364b74069157fd5d9d1ef993ce
e74215eb658c0473a1af1e7ce1a0b35fd72fa4b2
150b809b3e425b07a513c132b916bba92cafa4578fd6aa7e2c82356ef1717b14
GET /images/slider_controls.png HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/css/layout.css
Cookie: PHPSESSID=f6c573ruqokv2m5o3acmgrskm7
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 286
Connection: keep-alive
Location: http://www.acars-limos.de/404.html
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:49:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acars-limos.de/404.html
202.61.232.61200 OK 2.1 kB URL HTTP/1.1 www.acars-limos.de/404.html
IP 202.61.232.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash e32392ba7d076851d1ab8f41fe757e80
3a84cdbb796180c9903661795ed0e0da4d1ddf22
596dab0532557565689fe5527cd54e93bb105b33376cac00cc5d09238e80a07f
Analyzer Verdict Alert fortinet Phishing
GET /404.html HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.acars-limos.de/css/layout.css
Connection: keep-alive
Cookie: PHPSESSID=f6c573ruqokv2m5o3acmgrskm7
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: text/html
Last-Modified: Thu, 09 Feb 2017 23:00:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"589cf478-1946"
Content-Encoding: gzip
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad
142.250.74.42200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad
IP 142.250.74.42:0
File type ASCII text, with very long lines (2471)
Hash fe1b8aa2baebf2a089ae424180e18b24
ebd9f09562fe899516085c34f35f4a8d562cc6e7
826020400e628e5e7004cdf7678f0fd30d80b568a29ffb749612ffbd2f6f1e57
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56422
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Mon, 06 Feb 2023 03:45:06 GMT
expires: Mon, 06 Feb 2023 04:15:06 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 266
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:49:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 03:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/8/init_embed.js
142.250.74.3200 OK 227 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/8/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Size 227 kB (227161 bytes)
Hash e3fcdb3b625ae8f6058df005fbac1b91
9cd25835e9e08695c0114f57a5abf4d3437b1619
97fcf9ad8137f24c0f74e5450b2b4a01d87dfa70678130187fe13c1614ab419b
GET /maps-api-v3/embed/js/51/8/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 227161
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:04:03 GMT
expires: Thu, 01 Feb 2024 19:04:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 18:44:31 GMT
content-type: text/javascript
age: 377130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.214.84.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.84.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2acxw/cNe+I+oM6n1LRbjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mGseDk646p4E1wlxDMGkQPXhUXM=
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:02:00 GMT
expires: Mon, 05 Feb 2024 22:02:00 GMT
cache-control: public, max-age=31536000
age: 20854
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 417455
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Mon, 06 Feb 2023 07:42:32 GMT
Date: Mon, 06 Feb 2023 03:49:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Mon, 06 Feb 2023 07:42:32 GMT
Date: Mon, 06 Feb 2023 03:49:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Mon, 06 Feb 2023 07:42:32 GMT
Date: Mon, 06 Feb 2023 03:49:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FRZf4nkQyttwihy5BBbuHzT9lYQvBPqcOTdT5esu46vqMTvXAi5aQw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 18:39:44 GMT
age: 32990
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27b516a4bb5fa5512a31aa8de5f9706e
03aeba4fafc64130967d3645081426f81b5f7dd1
7e5d809bf4e1b6f7f25bf604c1e5efcaf2a442ebfb53397d65820ebb1eaf754a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8845
x-amzn-requestid: 4cae7b8e-f650-4d61-9f3d-8cce7410ba1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pOKFamIAMF4gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0225a-51cd8f5b2d810ad94f52a5e3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:40:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WhhBAtYjlLj3PcIM5a-OwGIDFLeHYNF5Tg99rpTFMa326gTFJ56zBA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:21 GMT
age: 21493
etag: "03aeba4fafc64130967d3645081426f81b5f7dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 21571
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tNp3KhwtaSjchn-VAo1VellQ63I1W9uIbkQ_84Y7z_4z--vGfz8PGA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:53:56 GMT
age: 21338
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6107217bc206ebf204dfcf832cffc04
4f370e81106ef09ce9294eaa074ff6922197ded0
2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZRVPNp0hKlSBXYjgbVfF8MGqNMHCKF2T4fAqflvZz8z-Uy9bKR9HhA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:17:18 GMT
age: 73936
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb0dab387816c4b691190ec83c2f0f06
9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358
6655307747227d7905f0eca1aaefda6147e4ae443fb9fb20cdb6a336aaab5b67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8528
x-amzn-requestid: b799da5b-d52a-4d83-bdd4-9582d39d6c5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwCmAFYgIAMFjvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb159-77235f642e8a0bdb07414dcb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:01:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EN4Mi_2U_eISge5bd6JQgkg6rGJcB2cQAyhKHOZO-g_Arj6kofRo6g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:26:08 GMT
age: 73406
etag: "9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.acars-limos.de/js/jquery/ui/mouse.min.js
202.61.232.61200 OK 0 B URL HTTP/1.1 www.acars-limos.de/js/jquery/ui/mouse.min.js
IP 202.61.232.61:0
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/ui/mouse.min.js HTTP/1.1
Host: www.acars-limos.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acars-limos.de/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 03:49:32 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Dec 2016 12:26:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58665274-c59"
Content-Encoding: gzip