Overview

URL www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
IP80.76.51.37
ASNCOGECO-PEER1
Location United States
Report completed2022-09-12 21:10:38 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-12 2 www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/ AXA Financial, Inc.
2022-09-12 2 www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/ AXA Financial, Inc.
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed
2022-09-12 2 kleinecheck.top Sinkholed


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-12 05:38:13 UTC 143.204.55.25
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-12 16:45:27 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-12 12:46:20 UTC 34.120.237.76
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-12 04:53:23 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-12 06:04:57 UTC 44.242.32.27
mnemonic passive DNS kleinecheck.top (3) 0 2022-09-09 23:40:05 UTC 2022-09-12 15:29:11 UTC 80.76.51.37 Unknown ranking
mnemonic passive DNS www.kleinecheck.top (26) 0 2022-09-09 23:40:05 UTC 2022-09-12 16:05:25 UTC 80.76.51.37 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-12 04:51:47 UTC 95.101.11.115
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-12 17:57:11 UTC 143.204.55.27


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 80.76.51.37

Date UQ / IDS / BL URL IP
2022-09-13 01:53:24 +0000
0 - 0 - 4 kleinecheck.top/index 80.76.51.37
2022-09-12 21:10:38 +0000
0 - 0 - 31 www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/ 80.76.51.37
2022-09-12 17:40:12 +0000
0 - 0 - 2 kleinecheck.top/sksk.zip 80.76.51.37
2022-09-12 15:55:30 +0000
0 - 0 - 10 kleinecheck.top/be/beveiligde/omgeving/b.n.p/ (...) 80.76.51.37
2022-09-12 07:23:17 +0000
0 - 0 - 2 kleinecheck.top/sksk.zip 80.76.51.37

Last 5 reports on ASN: COGECO-PEER1

Date UQ / IDS / BL URL IP
2022-12-01 11:36:35 +0000
0 - 0 - 26 agrosuplidorescr.com/YML/lets/yahoo%20scampag (...) 69.90.221.130
2022-12-01 05:43:13 +0000
0 - 0 - 1 archives-directive.at.ply.gg/ 209.25.141.180
2022-11-30 14:29:20 +0000
0 - 0 - 1 sharpenedpens.com/arztbedarf/spritzen-kanulen (...) 64.34.204.44
2022-11-30 11:33:27 +0000
5 - 0 - 2 www.sjue.com/blog/2006/10/night-dive-independ (...) 64.34.173.227
2022-11-30 07:52:51 +0000
0 - 0 - 1 saridarmotors.com/ 209.15.226.231

Last 5 reports on domain: kleinecheck.top

Date UQ / IDS / BL URL IP
2022-09-13 01:53:24 +0000
0 - 0 - 4 kleinecheck.top/index 80.76.51.37
2022-09-12 21:10:38 +0000
0 - 0 - 31 www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/ 80.76.51.37
2022-09-12 17:40:12 +0000
0 - 0 - 2 kleinecheck.top/sksk.zip 80.76.51.37
2022-09-12 15:55:30 +0000
0 - 0 - 10 kleinecheck.top/be/beveiligde/omgeving/b.n.p/ (...) 80.76.51.37
2022-09-12 07:23:17 +0000
0 - 0 - 2 kleinecheck.top/sksk.zip 80.76.51.37

Last 1 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-27 16:57:23 +0000
0 - 0 - 14 www.deblok.live/be/beveiligde/omgeving/a.x.a/ 185.45.195.104


JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (47)


Request Response
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/ HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         80.76.51.37
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 12 Sep 2022 21:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
Content-Length: 350
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   350
Md5:    9ed7ead701dfc6ad4fec51a2bc9d556e
Sha1:   5e2a9014477234bb98e67b2751a7f4c69a63beb0
Sha256: 230d3702c888d2540b47c73ecf4c4148a3bd524a7cb546f66eba90b8607874f1

Alerts:
  Blocklists:
    - openphish: AXA Financial, Inc.
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13039
Expires: Tue, 13 Sep 2022 00:47:46 GMT
Date: Mon, 12 Sep 2022 21:10:27 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 21:08:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QJ7q1AHKbhqLuS6Vfs1M-OsUGzmgQ66CRG2ooBKuh6qhvlep-JD_Yg==
Age: 126


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 04v3K-5q7cBrIVotiYkwxCAP7CxKNoB9wmQgIqbbqx0tQn04Apgr2g==
age: 49995
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 12 Sep 2022 21:10:27 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DF7F19C9971B81228C3A7C9DFBD1FECA5E6D0711CF91D4042BFD5471F717A83C"
Last-Modified: Mon, 12 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2752
Expires: Mon, 12 Sep 2022 21:56:19 GMT
Date: Mon, 12 Sep 2022 21:10:27 GMT
Connection: keep-alive

                                        
                                            GET /be/beveiligde/omgeving/a.x.a/ HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 12 Sep 2022 21:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: real=OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 452
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   452
Md5:    530f68bfee05248e9e4734e4f3d76c71
Sha1:   27865cb686cb33254031f71a21d8b647b2f4601c
Sha256: d02b86d253cda9275f083f07c053d5a17595d73d9cbfb1782bafae125e82772f

Alerts:
  Blocklists:
    - openphish: AXA Financial, Inc.
    - quad9: Sinkholed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 12 Sep 2022 21:10:28 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 282
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   282
Md5:    ece7009203be256cc56ac01dab4b9d9d
Sha1:   197caefea3ca7ffda2f2d6b4abe3c577d385d91a
Sha256: 95cfa9a27f0c925c4bafb8241748a9bb82c2c7519ad8b4ff4ea54a0656dad73b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 20:56:07 GMT
Expires: Mon, 12 Sep 2022 21:36:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XzsIG6yU4fcXS5ZTOeErXyy0cdZbdadbaBYc2_zHp87GldiwCGb0oA==
Age: 861


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 337
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 21:10:28 GMT
Last-Modified: Mon, 12 Sep 2022 21:04:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qJUl1xdkFhk3YubZ0QRJGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.32.27
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J8OwSa6lId0TzlD7hJz1EqxtsbE=

                                        
                                            GET /be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf? HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/?
Content-Length: 392
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   392
Md5:    6484101f591cf07b84048affe50a725f
Sha1:   1844e5816d4a55f8f2788acaa8d03d2f3724c9ff
Sha256: 0836fd132d7f2c194f696e3e98a310cccf1a22f0fae2ed1875c2759ad435b741

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/? HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
Connection: keep-alive
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: bid=ef8cbef2ce1d7f62dd9f251783761dbf; expires=Wed, 12-Oct-2022 21:10:29 GMT; Max-Age=2592000; path=/
location: start/?
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/? HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/
Connection: keep-alive
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1815
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (589)
Size:   1815
Md5:    181311e8dd67e8f9d756cb9527e8223f
Sha1:   a633f000cf0ec21845746f28572dcf070ea468ae
Sha256: a6cabfa6c6ce3094505d6de31ce2aa4cb18ce8b85188650d6b2993e2daeedc12

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/bower_components/jquery/dist/jquery.min.js HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:10 GMT
ETag: "15283-5d7408141b880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30138
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30138
Md5:    3430607b4301113ad9394c9260eef3f0
Sha1:   8c4db68b161b17e31be300e968a30ab0116b3193
Sha256: 31e4d11375322cd6f94dba7338570426f2412d6c5fa670427966d45c3648098c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:10 GMT
ETag: "4298-5d7408141b880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6063
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (16817)
Size:   6063
Md5:    14da93cff6d49885bf214d2503f614db
Sha1:   04d64d738cd0fd2b4eee3b8abc5326dfda3f1dea
Sha256: 49e584e9a0aee55b81771b9e010ccf1da6278da03fb8ddba07ef7a1f0a126732

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:12 GMT
ETag: "7918-5d74081603d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   7053
Md5:    52f1a8a2ce85fa8432308b33bc1a2e79
Sha1:   fd80917af5371c8ecad0198592a1e7cce4b77b0e
Sha256: 07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/core/form/core_form.js HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:08 GMT
ETag: "67d6-5d74081233400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11402
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9234)
Size:   11402
Md5:    7c154689fb03a457f611797131a9463b
Sha1:   aa4bfdec24de3704ebd2918b23364eafef1874ab
Sha256: ef97ed7eaebb781315162766918aa933e46f539704573afa0933f613d7437f86

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/core/token/core_token.js HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:08 GMT
ETag: "28f2-5d74081233400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1494
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1494
Md5:    e8ad1265cc414544d7a7794a5f254d0f
Sha1:   c022452bdd97bd1dd78a868df48594cf07c6f1b5
Sha256: 3a4dcba095efbc2dbc015465b4beb99852c34f8784d02e4202640e455504795b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/core/form/core_form.css HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:08 GMT
ETag: "ae1-5d74081233400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 710
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   710
Md5:    e4d44cd444f06845d63e28a67c4168b3
Sha1:   cda07ff868266633ced2f574d168e55c0c0a6019
Sha256: 46fea185ee3f25344079e9b3d2786d892c8ff2d6ab8ea205ab1eb1b8517aac1f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/form/css.css HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:06 GMT
ETag: "834-5d7408104af80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 769
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   769
Md5:    589002e43459c531ae3bb232dab0416e
Sha1:   29fbf211807538386e29e4303519768907802636
Sha256: 910b3019c2ba4aa4480e62f114a653a1d1afdc1791449cfb7afef0da9369a736

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/ng/ng.js?v=631fa04536b55 HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "15a2-5d74080e62b00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1412
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1412
Md5:    9ccc4d5cae4986d3c199988d8c81175c
Sha1:   584db3f565cbc11fbf727c79149558ab83aeee07
Sha256: 3ee615f22cec2b83111cea569df94979e7c3b39a2d56b65398740da8d5b150e3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/form/form.js?v=631fa04536ae9 HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:06 GMT
ETag: "bf7-5d7408104af80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 709
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   709
Md5:    42018b123357c5b2ce388ae78890b0f6
Sha1:   a8f7c33e594052eb4e5c5ebfea63079b402166aa
Sha256: 8ded9dda8bfa0bf3bbb1bb4577b99ccb105ba6ca04e7a583adcb8f59c71835d8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/token/token.js?v=631fa04536bb2 HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "518-5d74080e62b00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 529
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   529
Md5:    688426340ca3832144606ce47c45585a
Sha1:   b3b2d724d44385ccd5935ccc91de4302dd9cbd60
Sha256: 06f1d3c3bb48c2195bdb552abc06390880e6cceb844b498f5e81d65944a861a8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/node_modules/bootstrap/dist/css/bootstrap.min.css HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:18 GMT
ETag: "2565e-5d74081bbca80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22973
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   22973
Md5:    a5d5584b3540529a77b585b36d82f5b4
Sha1:   cad6f25941450fb9e50470b640f86f06047a290a
Sha256: 568f398f7aadd5c46a2b8a3a17c8a24aa91abf38aa2ffbbe57285cb881fd2dab

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/bower_components/angular/angular.min.js HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:12 GMT
ETag: "2937c-5d74081603d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (552)
Size:   58946
Md5:    ef8273bb5f21cf02cdb9ccd56513e7c1
Sha1:   0de400b680cfc9a05f3d182ea010b4ecb6166f7a
Sha256: 369f26576626b7705342e67ae37363858a5655c66755ddff450054dfe9c70bc4

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/i.png HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "875-5d74080e62b00"
Accept-Ranges: bytes
Content-Length: 2165
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 35 x 34, 8-bit/color RGBA, non-interlaced\012- data
Size:   2165
Md5:    1c606a83801ad2a0e0dff832583ed697
Sha1:   e16db53b61157d8a0b298951f4a1fc3d277e88e8
Sha256: b3e8f892cec6040b20b3afdad226481652260d5e54db5ca2221fd0d283f62418

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/itme.png HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "16db-5d74080e62b00"
Accept-Ranges: bytes
Content-Length: 5851
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 95 x 103, 8-bit/color RGBA, non-interlaced\012- data
Size:   5851
Md5:    b20c457e6ea54ebe68ec5dbeaf39567e
Sha1:   35992d7b891b1f58f5a341f9cb36a9686603434a
Sha256: 24e65cada9c9d798f5bda738536d825fbfd90a0261978c4adb8bd6225e0099dc

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/calc.png HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "2692-5d74080e62b00"
Accept-Ranges: bytes
Content-Length: 9874
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 90 x 109, 8-bit/color RGBA, non-interlaced\012- data
Size:   9874
Md5:    c74b6276d598041f211418580b8281c7
Sha1:   055c8c567048ba912ed368f7417548b300e7175b
Sha256: 303d1edfebcb2c35bbf8929adeceb74c768e6d2f0c97e2502775e2ce1ac59e5a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/logo.png HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "14df-5d74080e62b00"
Accept-Ranges: bytes
Content-Length: 5343
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 154 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   5343
Md5:    8dd266f8514a383bdee7b3103866273a
Sha1:   6197d46fe3bec9c13418feee4d913f566bdfd90b
Sha256: a10f4c853747c2d9cc34ffdd4e17e65de8795b3eb619202f31578c7c0676004c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/apps.png HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:04 GMT
ETag: "76de-5d74080e62b00"
Accept-Ranges: bytes
Content-Length: 30430
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 280 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   30430
Md5:    6161890f1ed72666c3cecad4c9f26d26
Sha1:   189a056c9d0bfddd0ef71a259ac7d576f570ef8e
Sha256: 9b98b04e412ddc3caa4da987d73bc7ded88a3c08240a3db5f6d91f1c5bf0a5c5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/favicon.ico HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 12 Sep 2022 21:10:27 GMT
ETag: "530-5e881533536f3"
Accept-Ranges: bytes
Content-Length: 1328
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1328
Md5:    945bf50cc3cfe5b8e8dae1ab38303874
Sha1:   340cccb9d45ac049050fcc8d06d9ed855fb47afa
Sha256: 40a01f9c7d274a1daca87f5163a049a93f37159719b3b6071600172cb88fe6e0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/bower_components/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/bower_components/font-awesome/css/font-awesome.min.css
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf; lng=de
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:12 GMT
ETag: "12d68-5d74081603d00"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/beveiligde/omgeving/a.x.a/start/form/newloader.gif HTTP/1.1 
Host: www.kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/be/beveiligde/omgeving/a.x.a/a1b2c3/ef8cbef2ce1d7f62dd9f251783761dbf/start/?
Cookie: real=OK; bid=ef8cbef2ce1d7f62dd9f251783761dbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 05 Feb 2022 07:42:06 GMT
ETag: "88042-5d7408104af80"
Accept-Ranges: bytes
Content-Length: 557122
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 480 x 480\012- data
Size:   557122
Md5:    ef8d4e6b20b0cf0d68713fb2f6069042
Sha1:   d62bb4b1a169c88879de3bd2f5c4292b6259a952
Sha256: 32bfc673211421c1a5a33acc98291840183582f11d15490954b42a81d79d4630

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/chop/chop/PIRATERIJ/gate.php?pl=token&link=axa&bid=ef8cbef2ce1d7f62dd9f251783761dbf&callback=jQuery32108550903426440493_1663017017143&data=%7B%22mes%22%3A%22User%20on%20start%20page%22%7D&_=1663017017144 HTTP/1.1 
Host: kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 57
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   57
Md5:    b20aa44be947400ac3320f1ccd0ba269
Sha1:   edf94a71a3f11531092738b03c4dd58f4dd94e3e
Sha256: ea401c572490d75da9874c6693a4b07b8e9e83a97584c731d50a00642ef8f1b0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /be/chop/chop/PIRATERIJ/gate.php?pl=token&link=axa&bid=ef8cbef2ce1d7f62dd9f251783761dbf&callback=jQuery32108550903426440493_1663017017141&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1663017017142 HTTP/1.1 
Host: kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:29 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 57
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   57
Md5:    2bfb2e320f787c1ae93a747047d9533f
Sha1:   9d80267af7bf73de847cc375a25ba3ab532d9171
Sha256: 23675ecd4be663ed459123bdd489ddcee0b478f5a5b9bf72ac519edf4786a548

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14886
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:10:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14886
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:10:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14886
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:10:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14886
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 21:10:30 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:38:55 GMT
age: 63095
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6999
Md5:    b7ccc33ae0c85a906f2c17db281ec790
Sha1:   1904722d70348235d5472c54f888d2b4b991e2aa
Sha256: f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: u_jETr8miiFyuhq7R09yb0lAP-hUv_6eTRV81Xzd9gSqU31VXwC9CQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:15:48 GMT
age: 64482
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9466
Md5:    6174529fff57758e958da5432344962f
Sha1:   05ec2076b32398d60ee77fab8c14345bc7dfe647
Sha256: 65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NKM6RRhJ5AuRF4NKSyBO6-KMkd1UGaw3DuZBkBao_8fzzpkMeDrn0w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:55:40 GMT
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
age: 83690
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9815
Md5:    239262b6ab17cb19414c35cd4f761092
Sha1:   48eddcf9838e980e67cc8f9cbb05b475df2f0331
Sha256: cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4162
x-amzn-requestid: 9dc27e34-69e1-439d-8974-1297584ef4d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSIhuHlWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d87a4-410e9ede524aa657609a057a;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:00:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jGj2al3pBpze7UQnHild4DxKndrprY4pTG_EZScw2RukQlgFEvNMkw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 07:18:04 GMT
age: 49946
etag: "47aaf5a3af2c25820d01d613c82b7f1279a298fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4162
Md5:    b674daf3dc6e85ed054ab34d69979b86
Sha1:   47aaf5a3af2c25820d01d613c82b7f1279a298fc
Sha256: 7b9993ef69d4b77c1533ada040c85563b9cf7b1f5d007177c005f6cd7fdba1d3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:57:43 GMT
age: 83567
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8485
Md5:    e407da4d97d497925b1ab523fd416787
Sha1:   166741631fb93d109b18dde6d316b3fa3276aa8f
Sha256: 707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 84519
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8799
Md5:    c14088c4ca0d576e087feed41b7f1565
Sha1:   172b23f2ef39b6c3fdebb5441b10a95712206d0a
Sha256: 2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
                                        
                                            GET /be/chop/chop/PIRATERIJ/gate.php?pl=token&link=axa&bid=ef8cbef2ce1d7f62dd9f251783761dbf&callback=jQuery32108550903426440493_1663017017141&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1663017017145 HTTP/1.1 
Host: kleinecheck.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kleinecheck.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         80.76.51.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 12 Sep 2022 21:10:34 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 57
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   57
Md5:    2bfb2e320f787c1ae93a747047d9533f
Sha1:   9d80267af7bf73de847cc375a25ba3ab532d9171
Sha256: 23675ecd4be663ed459123bdd489ddcee0b478f5a5b9bf72ac519edf4786a548

Alerts:
  Blocklists:
    - quad9: Sinkholed