Overview

URL wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
IP159.69.104.202
ASNHetzner Online GmbH
Location Germany
Report completed2022-09-27 06:01:16 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ve (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/wp-util.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/shortcode.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.2.5 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/resizable.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/advanced-custom-fields-pro/pro/assets/j (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/underscore.min.js?ver=1.8.3 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/media-models.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/media-editor.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/js/vendor/l.geosearch.prov (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/advanced-custom-fields-pro/assets/inc/t (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?v (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-admin/js/color-picker.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/advanced-custom-fields-pro/assets/inc/s (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4 Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/mediaelement/mediaelement-and-player.min.js (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox- (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-includes/js/media-audiovideo.min.js?ver=5.2.16 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/js/vendor/l.control.geosea (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/js/community.js?ver=1.0 Phishing
2022-09-27 2 wildbienenbox.de/wp-admin/js/iris.min.js?ver=1.0.7 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/js/vendor/bootstrap.min.js (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/fonts/itc_-_neue_aachen_pr (...) Phishing
2022-09-27 2 wildbienenbox.de/wp-content/themes/stadtbienen/_/js/vendor/leaflet.js?ver=3.0.0 Phishing
2022-09-27 2 wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS s7.addthis.com (3) 1504 2012-05-21 03:34:04 UTC 2022-09-26 04:42:26 UTC 23.38.200.123
mnemonic passive DNS m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2022-09-26 08:00:37 UTC 23.38.200.123
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-27 01:05:45 UTC 142.250.74.10
mnemonic passive DNS ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-26 19:55:31 UTC 142.250.74.174
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-27 04:56:55 UTC 104.18.10.207
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-27 04:39:28 UTC 142.250.74.72
mnemonic passive DNS connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2022-09-26 04:27:04 UTC 157.240.200.14
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS wildbienenbox.de (57) 0 2019-05-27 15:25:30 UTC 2022-09-26 19:35:08 UTC 159.69.104.202 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.115
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.49
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-26 04:26:58 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2022-09-26 04:34:46 UTC 23.38.201.146
mnemonic passive DNS v1.addthisedge.com (1) 1721 2019-05-22 18:56:22 UTC 2022-09-27 05:13:45 UTC 23.38.200.123
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 44.238.3.246


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 159.69.104.202

Date UQ / IDS / BL URL IP
2022-11-27 09:51:56 +0000
0 - 0 - 2 wildbienenbox.de/wp-content/uploads/2022/10/S (...) 159.69.104.202
2022-09-27 06:01:16 +0000
0 - 0 - 34 wildbienenbox.de/wp-content/uploads/2022/06/b (...) 159.69.104.202
2022-09-25 02:27:06 +0000
0 - 0 - 2 wildbienenbox.de/wp-content/uploads/2022/06/h (...) 159.69.104.202
2022-09-24 15:54:35 +0000
0 - 0 - 33 wildbienenbox.de/wp-content/uploads/2022/07/c (...) 159.69.104.202
2022-09-15 16:04:18 +0000
0 - 0 - 31 wildbienenbox.de/wp-content/uploads/2022/07/a (...) 159.69.104.202

Last 5 reports on ASN: Hetzner Online GmbH

Date UQ / IDS / BL URL IP
2022-11-29 20:21:20 +0000
0 - 0 - 2 maheshwariayurved.com/chase/home.php?public/e (...) 148.251.70.130
2022-11-29 20:14:34 +0000
0 - 0 - 2 88.198.94.71/169585802173.zip 88.198.94.71
2022-11-29 20:10:51 +0000
0 - 0 - 4 b.timespace.top/play-music-video/ 116.202.184.109
2022-11-29 20:07:11 +0000
0 - 0 - 2 ezstat.ru/2bsiV4.exe 148.251.234.93
2022-11-29 19:40:52 +0000
0 - 0 - 2 dl3.topfiles.net/files/2/308/59148/aHlQSkB3P2 (...) 88.99.67.38

Last 5 reports on domain: wildbienenbox.de

Date UQ / IDS / BL URL IP
2022-11-27 09:51:56 +0000
0 - 0 - 2 wildbienenbox.de/wp-content/uploads/2022/10/S (...) 159.69.104.202
2022-09-27 06:01:16 +0000
0 - 0 - 34 wildbienenbox.de/wp-content/uploads/2022/06/b (...) 159.69.104.202
2022-09-25 02:27:06 +0000
0 - 0 - 2 wildbienenbox.de/wp-content/uploads/2022/06/h (...) 159.69.104.202
2022-09-24 15:54:35 +0000
0 - 0 - 33 wildbienenbox.de/wp-content/uploads/2022/07/c (...) 159.69.104.202
2022-09-15 16:04:18 +0000
0 - 0 - 31 wildbienenbox.de/wp-content/uploads/2022/07/a (...) 159.69.104.202

Last 3 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-24 15:54:35 +0000
0 - 0 - 33 wildbienenbox.de/wp-content/uploads/2022/07/c (...) 159.69.104.202
2022-09-02 02:19:05 +0000
0 - 0 - 32 wildbienenbox.de/wp-content/uploads/2022/07/v (...) 159.69.104.202
2022-09-15 16:04:18 +0000
0 - 0 - 31 wildbienenbox.de/wp-content/uploads/2022/07/a (...) 159.69.104.202


JavaScript

Executed Scripts (74)


Executed Evals (2)

#1 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

                                        addthis.cbs
                                    

#2 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

                                        _ate.cbs
                                    

Executed Writes (0)



HTTP Transactions (96)


Request Response
                                        
                                            GET /wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         159.69.104.202
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 27 Sep 2022 06:01:05 GMT
Server: Apache
Location: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Content-Length: 354
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   354
Md5:    7d83bcc732def8dc198d9ec4f9576ba1
Sha1:   45ae74699125e253cd7070bab467027bfcb1ec59
Sha256: a7739ff9fd965ed16c24a3101ec8418189972d4222abe5d812c1c9613ce93d75

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 05:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fwaGROuow-hA2hMgVlFPTucYKzXcFqXMC2TCxFcVxCCxA8wWGpc1Jg==
Age: 2735


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12711
Expires: Tue, 27 Sep 2022 09:32:56 GMT
Date: Tue, 27 Sep 2022 06:01:05 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Mon, 26 Sep 2022 09:17:07 GMT
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qtRFGeIUyglRxqu3OwYysyWDQevAhbGyeHxDou3SSd3-PWNvc5fP9w==
age: 74639
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 06:01:05 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/cache/autoptimize/css/autoptimize_149fc4836283cedea2deb1999573f777.css HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 23 Aug 2019 11:20:36 GMT
etag: "10ee-590c6fece1363-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Sun, 17 Sep 2023 06:01:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1170
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4334), with no line terminators
Size:   1170
Md5:    93c64812785f197a9cda1f2c9a8eac60
Sha1:   43c870b7917c01de476019a49444dc270d8376f0
Sha256: da30f0ec0c65cdc41129be28d3dece65cda7d5f1ade73e3597cba9a1ac6492a2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4273
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:01:06 GMT
Last-Modified: Tue, 27 Sep 2022 04:49:53 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /wp-includes/js/utils.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "725-5bffed41b07af"
accept-ranges: bytes
content-length: 1829
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1829), with no line terminators
Size:   1829
Md5:    d12f7acd72838fde28e347a685dfba5a
Sha1:   29f8d13a62a6a996d80e5b450a58f1855a97cf2f
Sha256: e47d8a21f6aab459728016b7a02df9ace2af5d18c01833b2645caa15d3dae88a
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: "2748-5333ff613c400"
accept-ranges: bytes
content-length: 10056
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "f59-5bffed41aa9ef"
accept-ranges: bytes
content-length: 3929
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3704)
Size:   3929
Md5:    e6784d91bf2c668bc4093063c5b15113
Sha1:   687e1d2e957a821280dbd205ae66182f16dfdc30
Sha256: 194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "1aab-5bffed41aa9ef"
accept-ranges: bytes
content-length: 6827
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6603)
Size:   6827
Md5:    2fb11e1fba920ce6191aaf65473894ff
Sha1:   858e35ea212ce2c331f6f2b4980b55fa5bac29f5
Sha256: 1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/plupload/plupload.min.js?ver=2.1.9 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "3cfc-5bffed41c5f72"
accept-ranges: bytes
content-length: 15612
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15612), with no line terminators
Size:   15612
Md5:    199fb8cb0c368b4a4a13923701a12bd6
Sha1:   f759d3c440837ee80b6461fe41330562640cefb8
Sha256: 416211f730a5a0ff81eb5a9a80c7f22ff932478e0024a3bfd30d685019176c39
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "b9cc-5bffed41c6f12"
accept-ranges: bytes
content-length: 47564
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47529)
Size:   47564
Md5:    d54a4192cc3e4d54677c8091c1dae73b
Sha1:   7e3e8e30c66c5751bb5477b4e9939969f4e2aa5e
Sha256: de7bdcb93f2804e963f238713752a30a22a3a3afef6070fb78d206e6199cd353
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "4a9-5bffed41c4fd2"
accept-ranges: bytes
content-length: 1193
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1193), with no line terminators
Size:   1193
Md5:    f34f415aa56ed900eecf3f212adb57e2
Sha1:   352dfeec21817198c07ab11705b53d813420cea3
Sha256: 7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "c46-5bffed41aa9ef"
accept-ranges: bytes
content-length: 3142
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2927)
Size:   3142
Md5:    412416b5df69805b1e084e50d4283c2f
Sha1:   b8c47463c0793854638a8981cfad35503f393297
Sha256: 7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4273
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:01:06 GMT
Last-Modified: Tue, 27 Sep 2022 04:49:53 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /wp-includes/js/plupload/moxie.min.js?ver=1.3.5 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "1566c-5bffed41c5f72"
accept-ranges: bytes
content-length: 87660
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   87660
Md5:    937c41ae93303982f44bbe3abbd9e6f5
Sha1:   8c359b69e247a09157e6c6ead3c485057790f72a
Sha256: 18e3c3ca1e5a657dc68553f36e79e42b5db706d063b825cd1a0ee121c8eef799
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "412-5bffed41c4fd2"
accept-ranges: bytes
content-length: 1042
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1042), with no line terminators
Size:   1042
Md5:    c1b91f4ecdee99d6902adc5d752d0003
Sha1:   73534c8860439b9795371f3b01d27fcefdc82811
Sha256: d07866ced017c54663d1fc5b68b925540f824f39504198bf12b6ec30942dc253

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/shortcode.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "a12-5bffed41af80f"
accept-ranges: bytes
content-length: 2578
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2578), with no line terminators
Size:   2578
Md5:    518ccb530887286be592ac2b58a1f2e4
Sha1:   3c1a617e3adb7c92864e77f99d132befbf27f637
Sha256: ed1e3cd4ea3bdee6fea56ed4e2e30203f7001315a004fc8a85dda8505b8dedcd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "38b-5bffed41c4fd2"
accept-ranges: bytes
content-length: 907
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (907), with no line terminators
Size:   907
Md5:    45b5fdfa92b3e7fa6eb36bc5cdc0a074
Sha1:   20f96c4ea76edc117fbb3423dde9bc8fa27ff820
Sha256: 0b2c979f1afdb9624c1565ef8fcb2b9ac6595712ce4b7bdc0e428c6082967419

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/api-request.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "300-5bffed41c4fd2"
accept-ranges: bytes
content-length: 768
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (768), with no line terminators
Size:   768
Md5:    0b18fb5b82b71ce7197cac16e05b06ba
Sha1:   d763b463cbbee5c5e80025f6f889a4f23909157f
Sha256: 92bfa0c40e4ac63bd4250520dc726bdb5f28bc45d2b420c07d6d1e0b726bd56b
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 17 May 2019 17:08:53 GMT
etag: "17a69-589186fe43340"
accept-ranges: bytes
content-length: 96873
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   96873
Md5:    49edccea2e7ba985cadc9ba0531cbed1
Sha1:   f8747f8ee704d9af31d0950015e01d3f9635b070
Sha256: 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.2.5 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 06:30:10 GMT
etag: "738-5908696a479aa"
accept-ranges: bytes
content-length: 1848
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1848), with no line terminators
Size:   1848
Md5:    c087cd0e61b0eca99f78b6f76fc99d03
Sha1:   a37db7e8a83e2bfc305c233fc861dc4d0e4cd579
Sha256: a9f6c03ce6f4d1654f29f2136651e883198d509cb2e26af1c24b1f87b6ccae13

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-backbone.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "bba-5bffed41af80f"
accept-ranges: bytes
content-length: 3002
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3002), with no line terminators
Size:   3002
Md5:    166e97ee0a355d9fe237c59425580c66
Sha1:   38487836f9978b5b064d6517465724941779bd82
Sha256: 2582be3020e01f0a58bc319dcf3e865c01333888bb3cce28e07065b321888fa0
                                        
                                            GET /wp-includes/js/plupload/wp-plupload.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "1327-5bffed41c5f72"
accept-ranges: bytes
content-length: 4903
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4903), with no line terminators
Size:   4903
Md5:    33a59c878ea0a2a24fc57ec608711f13
Sha1:   4a35c1237e824d40a84884e7657007e4686cba85
Sha256: 8d9cc5528f851ec82a613b81fdc81e3da58f1962f188086cf178bb9ce8888865
                                        
                                            GET /wp-includes/js/jquery/ui/resizable.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "47be-5bffed41a6b6e"
accept-ranges: bytes
content-length: 18366
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18143)
Size:   18366
Md5:    a8d89577d43b628cae19a63410eb2828
Sha1:   bd130c5d418dfacfcb21c09d946c7c5374ee8e79
Sha256: 364ba5268d11ed9fbd16763df098faf8a1c059e9681c2debddf15d0830360427

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/advanced-custom-fields-pro/pro/assets/js/acf-pro-input.min.js?ver=5.7.8 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 07:18:10 GMT
etag: "4745-590874240cbe5"
accept-ranges: bytes
content-length: 18245
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18245), with no line terminators
Size:   18245
Md5:    0f5c06d26cb9d436a98e4526b7944f84
Sha1:   31c61e7dbad262e0ef9254996bcf5fe31c56d8e8
Sha256: e2f51fb7cb3554890d5d72dd609b8af592917e57677d9ac6ed56c015c5a68858

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "60fc-5bffed41aa9ef"
accept-ranges: bytes
content-length: 24828
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (24607)
Size:   24828
Md5:    ea712686ca9d325fddb57ce9be2b52c1
Sha1:   beccce00da22a7994cd0e09c1fe90b43df56bcf3
Sha256: 9af25ef0d99c5ef2c6f3b595b1716009858fc4bc71838ffcd61706bda396d261

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "3e8a-5bffed41af80f"
accept-ranges: bytes
content-length: 16010
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16010), with no line terminators
Size:   16010
Md5:    531c690707d18f60906bdf12d2ade193
Sha1:   0bddd39d059105bec8a13d3594b95e19146ee13d
Sha256: e5f5736867880dc34e00e9d915d49094d5aa572c73771e87a082bd721b5a4f7c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/media-models.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "363e-5bffed41a5bce"
accept-ranges: bytes
content-length: 13886
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13886), with no line terminators
Size:   13886
Md5:    31f71dc2af01eb818af452d8cc4da7df
Sha1:   afee463c466ea1fd887330533caf1e74c1765f35
Sha256: e613a0ca0ae24885ba7ea5230285110239202c5a7f7234f9cc06f55201201e03

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 05:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 05:38:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: p4LLzMMzovmhZLwuPyebEIxONe7yKcklGoE06R2sBzr5NjHd5rMSlg==
Age: 3020


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-includes/js/backbone.min.js?ver=1.2.3 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "56da-5bffed41c4fd2"
accept-ranges: bytes
content-length: 22234
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22234), with no line terminators
Size:   22234
Md5:    68b35f30b6734924f151e84dba919e9d
Sha1:   b8bccf9158ea49f4f152f738f227b6aca436baf9
Sha256: 29d1e5cff2718260f00fc9012476253e8664c99287d2a1866886e65060deb4ad
                                        
                                            GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.2.5 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 06:30:07 GMT
etag: "67cf-59086967635b2"
accept-ranges: bytes
content-length: 26575
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26575), with no line terminators
Size:   26575
Md5:    c8b8b81a1efe74aa37187bbc8bf113bc
Sha1:   8bbeb0cf3df7643917344a3d7070636fd54cf869
Sha256: 6a61ddba5a2e378e7e2fa664353afcbbc715b630e0b31d33a3a01c3da64137e6
                                        
                                            GET /wp-includes/js/media-editor.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "2a45-5bffed41a5bce"
accept-ranges: bytes
content-length: 10821
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10821), with no line terminators
Size:   10821
Md5:    a81e0d37ab35896c06ad28c0e596536a
Sha1:   de9c65bdfde2af4adcddc24cc1dfa62ebde05511
Sha256: 05fb3d7fa1ea03039d6a28b8070a08cc40ad9f161d6e6b2a29a63e32e5b87bf6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/vendor/l.geosearch.provider.openstreetmap.js?ver=3.0.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:13:31 GMT
etag: "3fb-59088083bc9d9"
accept-ranges: bytes
content-length: 1019
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1019
Md5:    7368008461175f32accdec6f129a9ae6
Sha1:   d66ce038e32e10e569a2f0cb8b4b2afdf97de973
Sha256: 6597153c9f2b9c3c0475b9408230088cba97c2b419a05e5993d9a1b869344faf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/advanced-custom-fields-pro/assets/inc/timepicker/jquery-ui-timepicker-addon.min.js?ver=1.6.1 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 07:17:28 GMT
etag: "a0ae-590873fc19fe8"
accept-ranges: bytes
content-length: 41134
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32003)
Size:   41134
Md5:    718e0a71a6685c775d2fabdf298abfbd
Sha1:   460317ea7aff977494bd37db7b3178e6e8e3f355
Sha256: a10c219838d03fb06a90ba4b1ce1a97acdf6b75faecb143421279ba6067f2e53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5898
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:01:06 GMT
Last-Modified: Tue, 27 Sep 2022 04:22:48 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 11 Apr 2012 02:58:23 GMT
etag: "49b-4bd5e699831c0"
accept-ranges: bytes
content-length: 1179
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (985)
Size:   1179
Md5:    4cc86d1003c45134d6838f13e3885db1
Sha1:   7e24d802fa52db547e437a5d92f21932bb858993
Sha256: 196bed4faf0fe38b89a496b1f41319b2a8077263f85819f8ad42933e0a2e2e52

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "56f-5bffed41ae86f"
accept-ranges: bytes
content-length: 1391
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391), with no line terminators
Size:   1391
Md5:    570ae0f3c201604926ea599d3d1f6c04
Sha1:   2c29243a73660964d4712b969d2a15e27777bc14
Sha256: 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
                                        
                                            GET /wp-content/plugins/easy-fancybox/js/jquery.easing.min.js?ver=1.4.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 06:26:16 GMT
etag: "8e8-5908688b01553"
accept-ranges: bytes
content-length: 2280
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2280), with no line terminators
Size:   2280
Md5:    fd1a4462d8802221ac23b5039dc1ad94
Sha1:   31c58ec561cd502d652c5482cc796210f05b953c
Sha256: b29bd83837b7fef974f0a302c56b652b77a7563ffae0e3ea6d292b11a707daae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-admin/js/color-picker.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "d9e-5bffed41cccd3"
accept-ranges: bytes
content-length: 3486
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3486), with no line terminators
Size:   3486
Md5:    1b23270e40ebccb7206ca3d95d4c8ac8
Sha1:   b916ae5fdcee0d9a3a7f93a1826771ad429be2e5
Sha256: 892461fce6b89c64c260782ae244b032f39cf6725391078aed0c7d4bf54a648a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/advanced-custom-fields-pro/assets/inc/select2/4/select2.full.min.js?ver=4.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 07:39:43 GMT
etag: "124fd-590878f5862db"
accept-ranges: bytes
content-length: 75005
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32091)
Size:   75005
Md5:    da607360bcc65284a197ada3d68d5439
Sha1:   a3cf7f0ff2baef254ce214b9bb042f01a7140a35
Sha256: 149b8bc61889897fb9420b347362582c8c89e62d28e1c720e8343ace08ad0986

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "2a9f-5bffed41aa9ef"
accept-ranges: bytes
content-length: 10911
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10694)
Size:   10911
Md5:    aa205fbfb232b9cb5f104142e7183b36
Sha1:   d73fef1ae7c9fc260dba69e57658793f01590eea
Sha256: bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-55295940-3 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:01:06 GMT
expires: Tue, 27 Sep 2022 06:01:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42259
Md5:    d98beb8a1dd921e9f786243164c47a0c
Sha1:   db5c33f9e650855fdb61c1382b3d099ee117af80
Sha256: 619081cb3aa0ee918a4907e9a956f06cb662f31e9cf886fa54d7664b086a1629
                                        
                                            GET /wp-content/themes/stadtbienen/_/img/logo-wildbienenbox.png HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 20 Aug 2019 08:02:50 GMT
etag: "1186-59087e1fee9f8"
accept-ranges: bytes
content-length: 4486
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 553 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size:   4486
Md5:    4af996b20e3aa6d9bd906951d099e218
Sha1:   244577cc7b0f9526b54192059bb1d7ca5c75ce7c
Sha256: edf936efd319c7799f8392627f799c9ab36a88a4d3b38deea00dcb307bb373f9
                                        
                                            GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.11.4 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "4979-5bffed41a6b6e"
accept-ranges: bytes
content-length: 18809
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18586)
Size:   18809
Md5:    005186c73d00e12af11c4a5ff2b77dd0
Sha1:   871eaa6d4d6be51b141ffac9aaead6509bac8ea1
Sha256: 24539433fce4b27fc6c4a4c471eb078a394d562681dc15f3b7f1fc1550ab41f2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.6-78496d1 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 16 Oct 2017 18:07:52 GMT
etag: "2638f-55bade28e4e00"
accept-ranges: bytes
content-length: 156559
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65266)
Size:   156559
Md5:    0c279a4de1ca848917f96892e58345d2
Sha1:   4ddcaae9a630a769905f9e43779eb80df5e76fa5
Sha256: 69aff18e54732eae1bb02c82d045c33f45675b017ba6dfdade80ab63a8e26bc5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.8.min.js?ver=1.6.2 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 06:26:01 GMT
etag: "3e6a-5908687c7c77d"
accept-ranges: bytes
content-length: 15978
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15977)
Size:   15978
Md5:    b4c52e404a1a8ebaef82b7a2c8994aa2
Sha1:   34a578d1aa1627d9437c3f99ed33dac65fe6c3ed
Sha256: 08f26bef009017d1d6ef309b3578453a969ecc8024a9521b7f739e44a3fb5bf0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/media-audiovideo.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "320d-5bffed41c4fd2"
accept-ranges: bytes
content-length: 12813
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12813), with no line terminators
Size:   12813
Md5:    65f82d0f761c26f0d47b54b270c61986
Sha1:   8daa9908846501a2019b18a6f461e63a0b44bcc5
Sha256: 543abc286153572eaebc3080854e468953ddb3070e858a3632a986edfacdaa3c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/vendor/l.control.geosearch.js?ver=3.0.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:13:30 GMT
etag: "1a41-590880831986d"
accept-ranges: bytes
content-length: 6721
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   6721
Md5:    cad3676b17b6fd89d18a3a4c80a8c1e4
Sha1:   176e26633d17bb01ccf9dca10ac74364d87d329c
Sha256: cdab3439c728d6ccc522f46753184cc8377d18f253b879281a98d33b68c8cae2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/main.js?ver=1.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:03:46 GMT
etag: "3a7a-59087e559e099"
accept-ranges: bytes
content-length: 14970
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   14970
Md5:    cc7d869debb1e1e856d7c6d1ed73e7f9
Sha1:   eb83ff1a7ed7075f37233851d0c93d5ff210a1ee
Sha256: 1dd0d98b5096d085178d9f51fdbd63f9b0597ca2e63e31aa4222fdd050d878f9
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/community.js?ver=1.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:03:43 GMT
etag: "55e1-59087e52fc327"
accept-ranges: bytes
content-length: 21985
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   21985
Md5:    a17d1e27e5edc8ec6d3887093af1da2a
Sha1:   84535391603e7792e1307527c9755207f75c2228
Sha256: ce3e8a661df099c429350336bf1e11fb570e84ab4612dfb6bf3e91dc394116a2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-admin/js/iris.min.js?ver=1.0.7 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 25 Oct 2016 22:33:30 GMT
etag: "5c38-53fb819076280"
accept-ranges: bytes
content-length: 23608
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23471)
Size:   23608
Md5:    45076064fdcbfcf9f5c8996e10ac4bc9
Sha1:   7acd10e06f393b443a17af57d637b6181e46b3b6
Sha256: 795643f7e8b76e3beede6b9e135bea2e96cfd36f97360d8466b9cff2502cec88

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/vendor/bootstrap.min.js?ver=3.0.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:13:29 GMT
etag: "8b3e-59088081bddd3"
accept-ranges: bytes
content-length: 35646
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32010)
Size:   35646
Md5:    59f3641e09bada0b978924540a587896
Sha1:   31f0bbbab2aa77af029030024bd8c8b8246a9eb7
Sha256: a8169e78b8158918a51d7ad2829aaab2ea3dccf81bf0082dfa577afac18561a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/media-views.min.js?ver=5.2.16 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 15 Apr 2021 08:41:24 GMT
etag: "18e5c-5bffed41af80f"
accept-ranges: bytes
content-length: 101980
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   101980
Md5:    6292ce27c711e2c135344dd6692d82c6
Sha1:   879c60a2823060edaac2c9d0d0e6826fbcfde06f
Sha256: 8f1310a5d65384e0730eb2a2ff3638baa67b9a0c10e49360b5095feae31ff378
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o7tn+7VlNBiVuI7PbhKIcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.238.3.246
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: itaiESCOzlm+hwqQSVWp+b4YUo8=

                                        
                                            GET /wp-content/themes/stadtbienen/_/img/socialmedia.png HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/cache/autoptimize/css/autoptimize_a1d04845e24a820fc504d36f36e95c57.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 20 Aug 2019 08:03:02 GMT
etag: "738-59087e2c2b7e2"
accept-ranges: bytes
content-length: 1848
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 128 x 25, 8-bit colormap, non-interlaced\012- data
Size:   1848
Md5:    a0c3b256e0c9fe0a0a1b87cbb573a5f5
Sha1:   ad41ab1e5f5a1d0bca2f0412bbfbc97b4298be43
Sha256: 70ad32cba76a80497e1f1a2c83ea47667ab4b0c693c71342d138a0e6ddf18a50
                                        
                                            GET /wp-content/themes/stadtbienen/_/css/images/bg11.png HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/cache/autoptimize/css/autoptimize_a1d04845e24a820fc504d36f36e95c57.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 20 Aug 2019 08:10:07 GMT
etag: "19385-59087fc0f94f2"
accept-ranges: bytes
content-length: 103301
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1500 x 375, 4-bit colormap, non-interlaced\012- data
Size:   103301
Md5:    ffbec794a0bfbe663125dcb6f982e105
Sha1:   bdfdf539f98ced72c5f3ffb98b772da591b2e4a3
Sha256: 432c3a315a7e317faa31f636941719e780455bb328f000788abc18073c313e4d
                                        
                                            GET /wp-content/themes/stadtbienen/_/img/logo-stadtbienen.png HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/cache/autoptimize/css/autoptimize_a1d04845e24a820fc504d36f36e95c57.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 20 Aug 2019 08:02:48 GMT
etag: "9b7-59087e1e8067d"
accept-ranges: bytes
content-length: 2487
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 80 x 97, 8-bit colormap, non-interlaced\012- data
Size:   2487
Md5:    c90c8c38de936c392b49b9c2f101d8fb
Sha1:   55fea115e5087a5dd38b47803dbcef2825f4b62b
Sha256: 26794055546cbd14fcca96357dc5d7f1d60ac0077461226427c664b77c98fe81
                                        
                                            GET /wp-content/themes/stadtbienen/_/fonts/itc_-_neue_aachen_pro_semibold-webfont.woff HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/cache/autoptimize/css/autoptimize_a1d04845e24a820fc504d36f36e95c57.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: font/woff
                                        
last-modified: Tue, 20 Aug 2019 08:00:59 GMT
etag: "8a98-59087db65db78"
accept-ranges: bytes
content-length: 35480
date: Tue, 27 Sep 2022 06:01:07 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 35480, version 1.0\012- data
Size:   35480
Md5:    d82b29bde48253d652b692934ebb2d28
Sha1:   a13ff7c7726d6911443c8488a7b64bd849bc4150
Sha256: 59b26d67f6b63e8ad812a0a83a3cb031b9be4a877acfb14f3f2cc87600c1207c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/advanced-custom-fields-pro/assets/js/acf-input.min.js?ver=5.7.8 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 06:48:57 GMT
etag: "1b396-59086d9cbc4ba"
accept-ranges: bytes
content-length: 111510
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wildbienenbox.de
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:21 GMT
expires: Thu, 21 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 469606
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/vendor/leaflet.js?ver=3.0.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:13:40 GMT
etag: "1e9e2-5908808ca8d64"
accept-ranges: bytes
content-length: 125410
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   116360
Md5:    b87cd33d44e99d7bb4fa59f97915a154
Sha1:   429b6461bab5189d6987d39713c3405223c461b8
Sha256: 9ad12a8b1ed82ccdfc74eebce578bd8f146b04ba08476f8a9a237e346f1772b2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4004
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:01:07 GMT
Last-Modified: Tue, 27 Sep 2022 04:54:23 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Tue, 27 Sep 2022 04:41:09 GMT
expires: Tue, 27 Sep 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 4798
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /en_GB/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 586c3a462493997b7677511aa4a26f20
etag: "e445cbff48d995d9be21f25043a335d0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 27 Sep 2022 06:03:18 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 386b48gTWqtfMeofLgrNxA==
x-fb-debug: ujZboI3TCqTOXYq+uAk35yh5oPUcxLx4VYcWeNlz3ZMp0Ip3VHkelZ453Rtz80lUTI/tEQEmgkGuGOCURFsCtQ==
content-length: 1685
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 06:01:07 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1961)
Size:   1685
Md5:    dfce9be3c8135aab5f31ea1f2e0acdc4
Sha1:   4aad8a89d4a49fb48cb98553270abb5b1df2b5ce
Sha256: 895bde03a438081feb977de1031cffd489f8d9ff8cb213e5bb233f67c8f0f895
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4004
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:01:07 GMT
Last-Modified: Tue, 27 Sep 2022 04:54:23 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=14376
date: Tue, 27 Sep 2022 06:01:07 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            GET /en_GB/sdk.js?hash=0351066daadbe096d50af5ee76a9cdf2 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildbienenbox.de
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ac9a45e8bcd4161ac09d15eb837b1e07
etag: "33f8044c29c2fce91934178c7cbab75f"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 27 Sep 2023 04:44:44 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: QuRjVVZJmQkS4uAm9CKJcg==
x-fb-debug: DpvG5xqSSsqkCdnOrP/rl+uBdLeQsWyOATQjStcywiYLJb2FvscWJiMCH1sqM6hS1yHMiWb1GUFwi8KS93rn1Q==
content-length: 88841
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 06:01:07 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18598)
Size:   88841
Md5:    42e463555649990912e2e026f4228972
Sha1:   34df4dd8ac3fd272fbbe5f949f77f2e80480bc6c
Sha256: 50a9c8b6c20e3c395444661a37c509a10dadcada6fae7b349e101b9d733753a1
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 27 Sep 2022 06:01:07 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /l10n/client.de.min.json HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildbienenbox.de
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.15.8
last-modified: Tue, 10 Sep 2019 15:15:17 GMT
etag: W/"5d77be05-df3"
cache-control: public, s-maxage=604800
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 1751
date: Tue, 27 Sep 2022 06:01:07 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (3547), with no line terminators
Size:   1751
Md5:    4716bfc23f1c3a2636fd777b3ea4cb0c
Sha1:   1c87c8dcbbcffce95e4694f1658de31f4f2e5767
Sha256: 300a335221e0083c8bf4a15eb95fd1fda652ffbd3f6d016bf0cb81b23a3f89a4
                                        
                                            GET /live/red_lojson/300lo.json?si=633291a1e624aabd&bkl=0&bl=1&pdt=707&sid=633291a1e624aabd&pub=ra-54242a8270f02aa6&rev=v8.28.8-wp&ln=de&pc=men&cb=0&ab=-&dp=wildbienenbox.de&fp=wp-content%2Fuploads%2F2022%2F06%2Fbeach_party_3__pusooynet.pdf&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1664258465399&jsl=129&uvs=633291a1c5ba2652000&skipb=1&callback=addthis.cbs.jsonp__94842727913314610 HTTP/1.1 
Host: m.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 27 Sep 2022 06:01:07 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   89
Md5:    597933125e79772f5a61292fab93b554
Sha1:   f5d4a71433464c5bbeabffd21cbdced4b1ef5b62
Sha256: 0338ca91b3b7e6c370b34da337b798770719c993026218c98863ac8325e3074e
                                        
                                            GET /live/boost/ra-54242a8270f02aa6/_ate.track.config_resp HTTP/1.1 
Host: v1.addthisedge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 504
etag: -1296813033--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=60, s-maxage=86400
date: Tue, 27 Sep 2022 06:01:07 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1217), with no line terminators
Size:   504
Md5:    9f8f96c3e5e4a289bbdd9ea6c8b07d1b
Sha1:   406eb4d7c5775cbf2410972de27df0ac9d2667e6
Sha256: cbf960ec26eb6f9ff03b2f6807aa58f89e5cb69b1954ec6660f8f724b67a4744
                                        
                                            GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 27 Sep 2022 06:01:07 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   77672
Md5:    9a77dff666eebb6cf4bbc4c67c7b563b
Sha1:   9e98d7824a7b4e34665c2690d6f52caddad1fe4b
Sha256: 6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 06:01:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 06:01:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7896
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 06:01:08 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b0646c-a8d3-4b51-ba84-a3c3dff2883c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7128
x-amzn-requestid: 5806782b-498e-427b-be73-a94695e3cacf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlPfFn4IAMFwMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bfc-07a420d631e463286c1dafa0;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:08 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dVs6mb-XGvvd4DXu8yFwO11iheR3QU3O3jFpxjcHZnWCc6jlXpx0Rg==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:51:54 GMT
age: 29354
etag: "4dbd2da7f7c45a97e3f6f6544ed428e892227cc3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7128
Md5:    4197a8a505b360b0c43142faf8cb7f48
Sha1:   4dbd2da7f7c45a97e3f6f6544ed428e892227cc3
Sha256: 434039a91ec37c8ff827c78f7613aa4f6416ded182b01140048a52654a2de4ce
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5142
x-amzn-requestid: 5b86b092-ff60-476c-855a-d32d5f10f115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvz1CGInoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296686-79e9a4cb75289e1b0785d4fc;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:06:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5uKkOdNToKayXi19pWBWrEwBYSj3NzbjLeE1qjhr8qqCapb_pGRD8g==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:50:22 GMT
age: 29446
etag: "8fbe2856a3e05ae7c45f4e35944d2835d47e4284"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5142
Md5:    e56f576ce4c320252cd028a38a1e4bde
Sha1:   8fbe2856a3e05ae7c45f4e35944d2835d47e4284
Sha256: dc5783e5d50e89d2b9c72dea55751a64157dbc9ec9be85383a6df10b5ec1a602
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10864
x-amzn-requestid: a6be937a-3e8f-4dad-bbca-f28554f5ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioQqFHsoAMFxXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420d0-78fecb9e2f76416044839a35;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:08:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-svEjPVAfeYvCQAHsARjTk9PNdkVGUJA_2415312kWF2x6MDI7o7A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:17:07 GMT
age: 60241
etag: "2a2fabd9f9792daf9c058fc754d5616267b703f1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10864
Md5:    56c3768b851e6a5206cbfbe3f5a97cae
Sha1:   2a2fabd9f9792daf9c058fc754d5616267b703f1
Sha256: 668dba22a0c81c4580637806c293521b176512b18ebcc2fe951be2f27f43134d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 29510
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /wp-content/themes/stadtbienen/_/icon-192x192.png HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://wildbienenbox.de/wp-json/>; rel="https://api.w.org/"
date: Tue, 27 Sep 2022 06:01:07 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13156)
Size:   106348
Md5:    0f4b86a406f4bfee40bfcbd87affe975
Sha1:   62c56ccdfb7625b69f617bc02ab25b7650fd1a3c
Sha256: 7e5ccc48bb8748ce1b2f810acf0273711aab21700626d20dbd126c7a31ee1b88
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MMrek5LO9ukZjB6VV-5McuE_maDzwTOihucz0kwxuaTJMNOpTchoJA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:52:00 GMT
age: 29348
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10211
Md5:    347dca206e13a3b13953f0ab398310b4
Sha1:   be60bbc96c832ae385cc9ae5828bd32703011b21
Sha256: f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
                                        
                                            GET /wp-content/themes/stadtbienen/_/js/vendor/leaflet.markercluster.js?ver=3.0.0 HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 20 Aug 2019 08:13:33 GMT
etag: "7070-590880857701a"
accept-ranges: bytes
content-length: 28784
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/cache/autoptimize/css/autoptimize_a1d04845e24a820fc504d36f36e95c57.css HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 15 Apr 2021 08:46:56 GMT
etag: "93d02-5bffee7e507fe-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Sun, 17 Sep 2023 06:01:06 GMT
vary: Accept-Encoding
content-encoding: gzip
date: Tue, 27 Sep 2022 06:01:06 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Roboto:500,300,300italic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 06:01:06 GMT
date: Tue, 27 Sep 2022 06:01:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         159.69.104.202
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://wildbienenbox.de/wp-json/>; rel="https://api.w.org/"
date: Tue, 27 Sep 2022 06:01:05 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/stadtbienen/_/favicon.ico HTTP/1.1 
Host: wildbienenbox.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/wp-content/uploads/2022/06/beach_party_3__pusooynet.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         159.69.104.202
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://wildbienenbox.de/wp-json/>; rel="https://api.w.org/"
date: Tue, 27 Sep 2022 06:01:07 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wildbienenbox.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 27 Sep 2022 06:01:06 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-23 05:21:01
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 247af5253dedb1b0bd0d1e5b53c5e898
cdn-cache: HIT
cf-cache-status: HIT
age: 12368769
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 751205d6c91cb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---